The MAZ Loader WordPress plugin prior to 1.4.1 does not enforce nonce checks, which allows malicious users to make administrators delete arbitrary loaders via a CSRF attack
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
feataholic maz loader |