Vulnerabilities > Goprayer > WP Prayer > 1.8.5

DATE CVE VULNERABILITY TITLE RISK
2024-06-14 CVE-2024-4751 Cross-Site Request Forgery (CSRF) vulnerability in Goprayer WP Prayer
The WP Prayer II WordPress plugin through 2.4.7 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
network
low complexity
goprayer CWE-352
4.3
4.3
2023-04-07 CVE-2023-25705 Unspecified vulnerability in Goprayer WP Prayer
Auth.
network
low complexity
goprayer
4.8
4.8