CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-6625

The Product Enquiry for WooCommerce WordPress plugin before 3.1 does not have a CSRF check in place when deleting inquiries, which could allow attackers to make a logged in admin delete them via a CSRF attack

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.2%

CVSS Severity

CVSS v3 Score 4.3

References

https://wpscan.com/vulnerability/d483f7ce-cb3f-4fcb-b060-005cec0ea10f/
https://wpscan.com/vulnerability/d483f7ce-cb3f-4fcb-b060-005cec0ea10f/

Products affected by CVE-2023-6625

Gravitymaster » Product Enquiry For Woocommerce » Version: 3.0

cpe:2.3:a:gravitymaster:product_enquiry_for_woocommerce:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-6625

Products

Pricing

Contact Us