VYPR
Unrated severityNVD Advisory· Published Jul 10, 2023· Updated Nov 8, 2024

MStore API < 3.9.7 - Settings Update via CSRF

CVE-2023-3209

Description

The MStore API WordPress plugin before 3.9.7 does not secure most of its AJAX actions by implementing privilege checks, nonce checks, or a combination of both.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.