CVE-2024-8091 Information

Description

The Enhanced Search Box WordPress plugin through 0.6.1 does not have CSRF check in place when updating its settings which could allow attackers to make a logged in admin change them via a CSRF attack

Reference

https://wpscan.com/vulnerability/1ca90b81-7539-4a15-8c5a-39a8d96a74a2/