2022-08-08 13:46:33
WPScan
PUBLISHED
The Easy Username Updater WordPress plugin before 1.0.5 does not implement CSRF checks, which could allow attackers to make a logged in admin change any users username includes the admin