The All in One B2B for WooCommerce WordPress plugin up to and including 1.0.3 does not properly check nonce values in several actions, allowing an malicious user to perform CSRF attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
all in one b2b for woocommerce project all in one b2b for woocommerce |