Wow-Company: >> Herd Effects >> 5.2.3 Security Vulnerabilities
The Herd Effects WordPress plugin before 5.2.7 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting effects via CSRF attacks
CVSS Score
6.1
EPSS Score
0.0
Published
2024-05-02
The Herd Effects WordPress plugin before 5.2.4 does not have CSRF when deleting its items, which could allow attackers to make logged in admins delete arbitrary effects via a CSRF attack
CVSS Score
4.3
EPSS Score
0.001
Published
2023-09-11