Vulnerabilities > CVE-2021-36915 - Unspecified vulnerability in Cozmoslabs Profile Builder

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
cozmoslabs

Summary

Cross-Site Request Forgery (CSRF) vulnerability in Cozmoslabs Profile Builder plugin <= 3.6.0 at WordPress allows uploading the JSON file and updating the options. Requires Import and Export add-on.

Vulnerable Configurations

Part Description Count
Application
Cozmoslabs
226