Vulnerabilities > WP Championship Project

DATE CVE VULNERABILITY TITLE RISK
2022-07-04 CVE-2022-1967 Unspecified vulnerability in Wp-Championship Project Wp-Championship
The WP Championship WordPress plugin before 9.3 is lacking CSRF checks in various places, allowing attackers to make a logged in admin perform unwanted actions, such as create and delete arbitrary teams as well as update the plugin's settings.
network
low complexity
wp-championship-project
6.5