Security Advisory

CVE-2023-6625

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-22 19:14:24

Last updated 2025-06-20 18:37:30

Assigner WPScan

State PUBLISHED

Description

The Product Enquiry for WooCommerce WordPress plugin before 3.1 does not have a CSRF check in place when deleting inquiries, which could allow attackers to make a logged in admin delete them via a CSRF attack

← Browse all CVEs View on cve.org ↗