Vulnerabilities (CVE)

Filtered by vendor Delete All Comments Easily Project Subscribe
Filtered by product Delete All Comments Easily
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-36505 1 Delete All Comments Easily Project 1 Delete All Comments Easily 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
The Delete All Comments Easily WordPress plugin through 1.3 is lacking Cross-Site Request Forgery (CSRF) checks, which could result in an unauthenticated attacker making a logged in admin delete all comments from the blog.