Security Advisory

CVE-2023-0761

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-15 12:15:43

Last updated 2025-01-24 21:19:28

Assigner WPScan

State PUBLISHED

Description

The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting Staff members, which could allow attackers to make logged in admins delete arbitrary Staff via a CSRF attack

← Browse all CVEs View on cve.org ↗