Security Advisory

CVE-2023-0762

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-15 12:15:32

Last updated 2025-01-24 20:27:00

Assigner WPScan

State PUBLISHED

Description

The Clock In Portal- Staff & Attendance Management WordPress plugin through 2.1 does not have CSRF check when deleting designations, which could allow attackers to make logged in admins delete arbitrary designations via a CSRF attack

← Browse all CVEs View on cve.org ↗