WordPress Disable Right Click For WP plugin <= 1.1.6 - Cross-Site Request Forgery (CSRF) vulnerability
Vulnerable versions
<= 1.1.6
PSID
0ad2f62dbbaa
Classification
Cross Site Request Forgery (CSRF)
OWASP Top 10
A5: Broken Access Control
Required privilege
Publicly disclosed
2022-05-04
Patchstack vPatch available since
09.12.2021
Details
Cross-Site Request Forgery (CSRF) vulnerability discovered by Rasi Afeef (Patchstack Alliance) in WordPress Disable Right Click For WP plugin (versions <= 1.1.6).
Solution
No patched version is available. No reply from the vendor.
References
CVE-2022-29427
Plugin page