Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin UserPro-Community and User Profile Multiple Cross-Site Request Forgery Vulnerabilities - CVE-2023-2497 - Vulnerability Database
WP Plugin Userpro

WordPress Plugin UserPro-Community and User Profile Multiple Cross-Site Request Forgery Vulnerabilities - CVE-2023-2497

High
Reference: CVE-2023-2497
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-2497
Title: WordPress Plugin UserPro-Community and User Profile Multiple Cross-Site Request Forgery Vulnerabilities
Overview:

WordPress Plugin UserPro-Community and User Profile is prone to multiple cross-site request forgery vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application other attacks are also possible. WordPress Plugin UserPro-Community and User Profile version 5.1.0 is vulnerable prior versions may also be affected.