Vulnerabilities > Simple Bitcoin Faucets Project

DATE CVE VULNERABILITY TITLE RISK
2022-09-26 CVE-2022-3024 Incorrect Authorization vulnerability in Simple Bitcoin Faucets Project Simple Bitcoin Faucets
The Simple Bitcoin Faucets WordPress plugin through 1.7.0 does not have any authorisation and CSRF in an AJAX action, allowing any authenticated users, such as subscribers to call it and add/delete/edit Bonds.
network
low complexity
simple-bitcoin-faucets-project CWE-863
5.4
5.4