cp_feedback
AJAX action, which makes it possible for attackers to submit feedback via a forged request if they can trick an administrator into performing an action such as clicking on a link. CP Blocks by CodePeople <= 1.0.19 - Cross-Site Request Forgery (CSRF)
REPORT ID: ab068a25-094d-4ddc-b9ca-c871141b69a3
The plugin contains a Cross-Site Request Forgery (CSRF) vulnerability due to a missing nonce check in the
You need to log in to view the vulnerability details.