Security Advisory

CVE-2022-3097

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-25 00:00:00

Last updated 2025-05-07 20:13:11

Assigner WPScan

State PUBLISHED

Description

The Plugin LBstopattack WordPress plugin before 1.1.3 does not use nonces when saving its settings, making it possible for attackers to conduct CSRF attacks. This could allow attackers to disable the plugins protections.

← Browse all CVEs View on cve.org ↗