Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin CallRail Phone Call Tracking Cross-Site Request Forgery - CVE-2022-36796 - Vulnerability Database
WP Plugin Callrail Phone Call Tracking

WordPress Plugin CallRail Phone Call Tracking Cross-Site Request Forgery - CVE-2022-36796

Medium
Reference: CVE-2022-36796
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-36796
Title: WordPress Plugin CallRail Phone Call Tracking Cross-Site Request Forgery
Overview:

WordPress Plugin CallRail Phone Call Tracking is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application other attacks are also possible. WordPress Plugin CallRail Phone Call Tracking version 0.4.9 is vulnerable prior versions may also be affected.