CSRF Vulnerability in All in One B2B for WooCommerce WordPress Plugin

CSRF Vulnerability in All in One B2B for WooCommerce WordPress Plugin

CVE-2023-3547 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

The All in One B2B for WooCommerce WordPress plugin through 1.0.3 does not properly check nonce values in several actions, allowing an attacker to perform CSRF attacks.

Learn more about our Wordpress Pen Testing.