Vulnerability Details CVE-2021-24818
The WP Limits WordPress plugin through 1.0 does not have CSRF check when saving its settings, allowing attacker to make a logged in admin change them, which could make the blog unstable by setting low values
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.8%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.3
References
Products affected by CVE-2021-24818
-
cpe:2.3:a:wp_limits_project:wp_limits:-
-
cpe:2.3:a:wp_limits_project:wp_limits:1.0