The Registration Forms WordPress plugin prior to 3.8.1.3 does not have authorisation and CSRF when deleting users via an init action handler, allowing unauthenticated malicious users to delete arbitrary users (along with their posts)
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
genetechsolutions pie register |