IDCVSSSummaryLast (major) updatePublished
CVE-2021-24635 5.5
The Visual Link Preview WordPress plugin before 2.2.3 does not enforce authorisation on several AJAX actions and has the CSRF nonce displayed for all authenticated users, allowing any authenticated user (such as subscriber) to call them and 1) Get an
01-10-2021 - 16:39 20-09-2021 - 10:15
Back to Top Mark selected
Back to Top