The Product Enquiry for WooCommerce WordPress plugin prior to 3.1 does not have a CSRF check in place when deleting inquiries, which could allow malicious users to make a logged in admin delete them via a CSRF attack
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gravitymaster product enquiry for woocommerce |