NuytsTech Security

CVE-2023-6501

by ·

The Splashscreen WordPress plugin through 0.20 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Date published : 2024-02-12

https://magos-securitas.com/txt/CVE-2023-6501.txt

https://wpscan.com/vulnerability/dd19189b-de04-44b6-8ac9-0c32399a8976/

Tags: