Vulnerabilities > Tipsandtricks HQ > WP Simple Adsense Insertion > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-06-08 CVE-2022-1695 Cross-Site Request Forgery (CSRF) vulnerability in Tipsandtricks-Hq WP Simple Adsense Insertion
The WP Simple Adsense Insertion WordPress plugin before 2.1 does not perform CSRF checks on updates to its admin page, allowing an attacker to trick a logged in user to manipulate ads and inject arbitrary javascript via submitting a form.
4.3