Vulnerability CVE-2022-3538
Published: 2022-11-14

Description:
The Webmaster Tools Verification WordPress plugin through 1.2 does not have authorisation and CSRF checks when disabling plugins, allowing unauthenticated users to disable arbitrary plugins

Type:

CWE-352

 (Cross-Site Request Forgery (CSRF))

 References:
https://wpscan.com/vulnerability/337ee7ed-9ade-4567-b976-88386cbcf036
Copyright 2026, cxsecurity.com

 

Back to Top