Vulnerabilities > Delete ALL Comments Easily Project > Delete ALL Comments Easily > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-11-01 | CVE-2020-36505 | Cross-Site Request Forgery (CSRF) vulnerability in Delete ALL Comments Easily Project Delete ALL Comments Easily 1.3 The Delete All Comments Easily WordPress plugin through 1.3 is lacking Cross-Site Request Forgery (CSRF) checks, which could result in an unauthenticated attacker making a logged in admin delete all comments from the blog. | 6.5 |