Security Advisory

CVE-2021-24249

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-05 18:39:43

Last updated 2024-08-03 19:21:18

Assigner WPScan

State PUBLISHED

Description

The Business Directory Plugin – Easy Listing Directories for WordPress WordPress plugin before 5.11.2 suffered from a Cross-Site Request Forgery issue, allowing an attacker to make a logged in administrator export files, which could then be downloaded by the attacker to get access to PII, such as email, home addresses etc

← Browse all CVEs View on cve.org ↗