CSRF Vulnerability in All in One B2B for WooCommerce WordPress Plugin
CVE-2023-3547 · HIGH Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
The All in One B2B for WooCommerce WordPress plugin through 1.0.3 does not properly check nonce values in several actions, allowing an attacker to perform CSRF attacks.
Learn more about our Wordpress Pen Testing.