CVE-2019-14683

The codection "Import users from CSV with meta" plugin before 1.14.2.2 for WordPress allows wp-admin/admin-ajax.php?action=acui_delete_attachment CSRF.
Configurations

Configuration 1 (hide)

cpe:2.3:a:codection:import_users_from_csv_with_meta:*:*:*:*:*:wordpress:*:*

History

No history.

Information

Published : 2019-08-08 20:15

Updated : 2024-02-28 17:08


NVD link : CVE-2019-14683

Mitre link : CVE-2019-14683

CVE.ORG link : CVE-2019-14683


JSON object : View

Products Affected

codection

  • import_users_from_csv_with_meta
CWE
CWE-352

Cross-Site Request Forgery (CSRF)