Web: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-3688

Nov. 21, 2022, 11:15 a.m. |

National Vulnerability Database nist.gov

The WPQA Builder WordPress plugin before 5.9 does not have CSRF check when following and unfollowing users, which could allow attackers to make logged in users perform such actions via CSRF attacks

cve

Senior Cloud Security Engineer

@ HelloFresh | Berlin, Germany

Senior Security Engineer

@ Reverb | Remote, US

I.S. Security Analyst

@ YVFWC | Yakima, WA

Territory Account Manager - Cybersecurity - Little Rock

@ Optiv | Little Rock, AR

Cybersecurity Network Engineer

@ Bitcoin Depot | Remote

Senior Solutions Architect, Prisma Cloud - Visibility, Compliance, and Security (EMEA)

@ Palo Alto Networks | Manchester, United Kingdom

Cloud Security Engineer

@ Snow Software | Solna, Sweden

Senior Security Engineer - 12 month contract - Outside IR35 - Northampton Area

@ Eurofins | Northampton, United Kingdom

Penetration Tester

@ Family Zone | Melbourne, Australia

Senior Consultant - II - Fortinet

@ Optiv | Bengaluru, Karnataka

Snr Professional Services Consultant - XSIAM

@ Palo Alto Networks | Madrid, Spain

Data Governor and Security Specialist

@ Dynatrace | Milan, Italy