RSS   Vulnerabilities for 'Genie wp favicon'   RSS

2021-11-08
 
CVE-2021-24674

CWE-352
 

 
The Genie WP Favicon WordPress plugin through 0.5.2 does not have CSRF in place when updating the favicon, which could allow attackers to make a logged in admin change it via a CSRF attack

 


Copyright 2024, cxsecurity.com

 

Back to Top