2023-03-27 15:37:21
WPScan
PUBLISHED
The WP Shamsi WordPress plugin through 4.3.3 has CSRF and broken access control vulnerabilities which leads user with role as low as subscriber delete attachment.