Vulnerabilities > WP Customerarea

DATE CVE VULNERABILITY TITLE RISK
2023-02-13 CVE-2022-4745 Unspecified vulnerability in Wp-Customerarea WP Customer Area
The WP Customer Area WordPress plugin before 8.1.4 does not have CSRF checks when performing some actions such as chmod, mkdir and copy, which could allow attackers to make a logged-in admin perform them and create arbitrary folders, copy file for example.
network
low complexity
wp-customerarea
7.1