VYPR
High severity8.1NVD Advisory· Published Apr 24, 2017· Updated Jun 17, 2026No known patch

CVE-2017-8099

CVE-2017-8099

Description

There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • cpe:2.3:a:browserweb_inc:whizz:*:*:*:*:*:wordpress:*:*
    Range: <=1.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.