The DW Question & Answer Pro WordPress plugin up to and including 1.3.4 does not properly check for CSRF in some of its functions, allowing malicious users to make logged in users perform unwanted actions, such as update a comment or a question status.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
designwall dw question \\& answer |