Vulnerabilities > Lesterchan > WP Postratings > 1.74
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-16 | CVE-2021-25117 | Cross-Site Request Forgery (CSRF) vulnerability in Lesterchan Wp-Postratings The WP-PostRatings WordPress plugin before 1.86.1 does not sanitise the postratings_image parameter from its options page (wp-admin/admin.php?page=wp-postratings/postratings-options.php). | 4.8 |