Vulnerabilities

CVE-2018-10233

by Fred · 23/04/2018

The User Profile & Membership plugin before 2.0.7 for WordPress has no mitigations implemented against cross site request forgery attacks. This is a structural finding throughout the entire plugin.

Date published : 2018-04-23

https://github.com/RiieCco/write-ups/tree/master/CVE-2018-10233

Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin

Similar

Tags: Cybersecurity Alert