Medium severity6.5NVD Advisory· Published Dec 13, 2021· Updated Jun 17, 2026
CVE-2021-24784
CVE-2021-24784
Description
The WP Admin Logo Changer WordPress plugin through 1.0 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin update them via a CSRF attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/WP Admin Logo Changerdescription
- Range: <=1.0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/2e9132b5-f8cd-4acc-839c-188d79277270nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.