Vulnerabilities (CVE)

Filtered by vendor Easy Username Updater Project Subscribe
Filtered by product Easy Username Updater
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-2355 1 Easy Username Updater Project 1 Easy Username Updater 2024-02-28 N/A 6.5 MEDIUM
The Easy Username Updater WordPress plugin before 1.0.5 does not implement CSRF checks, which could allow attackers to make a logged in admin change any user's username includes the admin