Wow-Company: >> Button Generator >> 2.3.6 Security Vulnerabilities
The Button Generator WordPress plugin before 3.0 does not have CSRF check in place when bulk deleting, which could allow attackers to make a logged in admin delete buttons via a CSRF attack
CVSS Score
3.4
EPSS Score
0.0
Published
2024-05-02
Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Button Generator – easily Button Builder.This issue affects Button Generator – easily Button Builder: from n/a through 2.3.8.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-12-18