Vulnerabilities > CVE-2021-24446 - Unspecified vulnerability in Wpchill Remove Footer Credit
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
The Remove Footer Credit WordPress plugin before 1.0.6 does not have CSRF check in place when saving its settings, which could allow attacker to make logged in admins change them and lead to Stored XSS issue as well due to the lack of sanitisation
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |