CVE-2022-1694
EUVD-2022-2497913.06.2022, 13:15
The Useful Banner Manager WordPress plugin through 1.6.1 does not perform CSRF checks on POST requests to its admin page, allowing an attacker to trick a logged in admin to add, modify or delete banners from the plugin by submitting a form.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| useful_banner_manager_project | useful_banner_manager | 𝑥 ≤ 1.6.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration