WordPress WP Tabs Slides Plugin <= 2.0.3 is vulnerable to Cross Site Request Forgery (CSRF)
CVE-2023-22688
8.8HIGH
Summary
The WP Tabs Slides plugin by Abdul Ibad is susceptible to a Cross-Site Request Forgery (CSRF) vulnerability, allowing attackers to make unauthorized requests on behalf of the user. This can potentially lead to security breaches if malicious actions are executed without the user's consent. It is crucial for users of the plugin to update to the latest version to mitigate such risks.
Affected Version(s)
WP Tabs Slides <= 2.0.3
References
CVSS V3.1
Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved
Credit
Mika (Patchstack Alliance)