CVE-2023-3178
- Reference to the description:
- Description:
- The POST SMTP Mailer WordPress plugin before 2.5.7 does not have proper CSRF checks in some AJAX actions, which could allow attackers to make logged in users with the manage_postman_smtp capability delete arbitrary logs via a CSRF attack.
- Last updated date:
- 01/22/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 01/22/2024
- Reference url to background
https://wpscan.com/vulnerability/5341cb5d-d204-49e1-b013-f8959461995f/