High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-05	CVE-2022-4941	Unspecified vulnerability in Wclovers Wcfm Membership The WCFM Membership plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.9.10 due to missing nonce checks on various AJAX actions. network low complexity wclovers	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.