CVE-2023-50858

MEDIUM

Bill Minozzi Anti Hacker < 4.34 - Cross-Site Request Forgery

Title source: llm

Description

Cross-Site Request Forgery (CSRF) vulnerability in Bill Minozzi Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan.This issue affects Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan: from n/a through 4.34.

References (1)

Core 1

Core References

Third Party Advisory vdb-entry

https://patchstack.com/database/vulnerability/antihacker/wordpress-anti-hacker-plugin-4-34-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

Scores

CVSS v3 5.4

EPSS 0.0020

EPSS Percentile 9.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

Details

CWE

CWE-352

Status published

Products (2)

Bill Minozzi/Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan < 4.34

billminozzi/anti_hacker < 4.34

Published Dec 28, 2023

Tracked Since Feb 18, 2026