First published: Mon Feb 12 2024(Updated: )
The Splashscreen WordPress plugin through 0.20 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
Credit: contact@wpscan.com
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.