Security Advisory

CVE-2021-24795

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-13 10:40:57

Last updated 2024-08-03 19:42:17

Assigner WPScan

State PUBLISHED

Description

The Filter Portfolio Gallery WordPress plugin through 1.5 is lacking Cross-Site Request Forgery (CSRF) check when deleting a Gallery, which could allow attackers to make a logged in admin delete arbitrary Gallery.

← Browse all CVEs View on cve.org ↗