Vulnerabilities > Genie WP Favicon Project > Genie WP Favicon > 0.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-08 | CVE-2021-24674 | Cross-Site Request Forgery (CSRF) vulnerability in Genie WP Favicon Project Genie WP Favicon The Genie WP Favicon WordPress plugin through 0.5.2 does not have CSRF in place when updating the favicon, which could allow attackers to make a logged in admin change it via a CSRF attack | 4.3 |