{"vulnerability": "CVE-2021-36850", "sightings": [{"uuid": "6070f7ff-5a10-4eba-b0f6-007f2daab770", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-36850", "type": "seen", "source": "https://t.me/cibsecurity/29899", "content": "\u203c CVE-2021-36850 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in WordPress Media File Renamer \u00e2\u20ac\u201c Auto & Manual Rename plugin (versions <= 5.1.9). Affected parameters \"post_title\", \"filename\", \"lock\". This allows changing the uploaded media title, media file name, and media locking state.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-04T20:23:44.000000Z"}]}