Vulnerabilities > Webdevstudios > Custom Post Type UI > 1.11.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-24 | CVE-2023-1623 | Unspecified vulnerability in Webdevstudios Custom Post Type UI The Custom Post Type UI WordPress plugin before 1.13.5 does not properly check for CSRF when sending the debug information to a user supplied email, which could allow attackers to make a logged in admin send such information to an arbitrary email address via a CSRF attack. | 6.5 |