Descrição
The Nested Pages WordPress plugin <= 3.1.15 was vulnerable to Cross-Site Request Forgery via the `npBulkAction`s and `npBulkEdit` `admin_post` actions, which allowed attackers to trash or permanently purge arbitrary posts as well as changing their status, reassigning their ownership, and editing other metadata.
Software
Não informado
Tipo Software
Plugin
CVE
CVE-2021-38342
Tags
Nâo informado
Data de publicação
30/08/2021
Última atualização
19/12/2023
Pontuação em CVSS 3.0
8.1
Alto