Vulnerabilities

CVE-2024-0779

by Fred · 18/03/2024

The Enjoy Social Feed plugin for WordPress website WordPress plugin through 6.2.2 does not have authorisation and CSRF in various function hooked to admin_init, allowing unauthenticated users to call them and unlink arbitrary users Instagram Account for example

More information : https://wpscan.com/vulnerability/ced134cf-82c5-401b-9476-b6456e1924e2/

Attack vector :
Attack complexity :
Privileges required :
User interaction :
Confidentiality impact :
Integrity impact :
Base score :
Base severity :
Exploitability score :
Impact score :

Similar

Tags: Cybersecurity Alert