Source: National Vulnerability Database

The WP Championship WordPress plugin before 9.3 is lacking CSRF checks in various places, allowing attackers to make a logged in admin perform unwanted actions, such as create and delete arbitrary teams as well as update the plugin's settings. Due to the

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-1967

75 hits since 2022-07-06

PHP Vulns Source Ratio: 17% (7060 total, 590 propagated, 3530 filtered)