CSRF Vulnerability in Simple Ajax Chat Plugin Allows Unauthorized Chat Log Clearing and Message Deletion

CSRF Vulnerability in Simple Ajax Chat Plugin Allows Unauthorized Chat Log Clearing and Message Deletion

CVE-2022-27850 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Cross-Site Request Forgery (CSRF) in Simple Ajax Chat (WordPress plugin) <= 20220115 allows an attacker to clear the chat log or delete a chat message.

Learn more about our Wordpress Pen Testing.