Unrated severityNVD Advisory· Published Sep 27, 2021· Updated Apr 28, 2026
WordPress uListing plugin <= 2.0.5 - Settings Update via Cross-Site Request Forgery (CSRF) vulnerability
CVE-2021-36878
Description
Cross-Site Request Forgery (CSRF) vulnerability in WordPress uListing plugin (versions <= 2.0.5) makes it possible for attackers to update settings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- StylemixThemes/uListing (WordPress plugin)v5Range: <= 2.0.5
Patches
Vulnerability mechanics
References
2- patchstack.com/database/vulnerability/ulisting/wordpress-ulisting-plugin-2-0-5-settings-update-via-cross-site-request-forgery-csrf-vulnerabilitymitrex_refsource_MISC
- wordpress.org/plugins/ulisting/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.