Vulnerabilities and Security Researches

WP Inventory Manager, CVE-2023-2842

CVE, Research URL: CVE-2023-2842
Home page URL: Security reports for WP Inventory Manager
Application: WP Inventory Manager
Published on: Jun 27, 2023
Research Description: The WP Inventory Manager WordPress plugin before 2.1.0.14 does not have CSRF checks, which could allow attackers to make logged-in admins delete Inventory Items via a CSRF attack
Affected versions: max 2.1.0.14.
Status: vulnerable