VYPR
Medium severity4.3NVD Advisory· Published Aug 30, 2023· Updated Jun 17, 2026

CVE-2023-4209

CVE-2023-4209

Description

The POEditor WordPress plugin before 0.9.8 does not have CSRF checks in various places, which could allow attackers to make logged in admins perform unwanted actions, such as reset the plugin's settings and update its API key via CSRF attacks.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.