Source: National Vulnerability Database

The DW Question & Answer Pro WordPress plugin through 1.3.4 does not properly check for CSRF in some of its functions, allowing attackers to make logged in users perform unwanted actions, such as update a comment or a question status.

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-24805

59 hits since 2022-04-25

PHP Vulns Source Ratio: 17% (6222 total, 534 propagated, 3111 filtered)