CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Genie Wp Favicon Project: >> Genie Wp Favicon Security Vulnerabilities

CVE-2021-24674

The Genie WP Favicon WordPress plugin through 0.5.2 does not have CSRF in place when updating the favicon, which could allow attackers to make a logged in admin change it via a CSRF attack

CVSS Score

6.5

EPSS Score

0.001

Published

2021-11-08

Page 1

Vulnerabilities

Vulnerable Software

Genie Wp Favicon Project: >> Genie Wp Favicon Security Vulnerabilities

Products

Pricing

Contact Us