Unrated severityNVD Advisory· Published Jan 22, 2024· Updated Jun 20, 2025
Product Enquiry for WooCommerce < 3.1 - Arbitrary Enquiry Deletion via CSRF
CVE-2023-6625
Description
The Product Enquiry for WooCommerce WordPress plugin before 3.1 does not have a CSRF check in place when deleting inquiries, which could allow attackers to make a logged in admin delete them via a CSRF attack
Affected products
1- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- wpscan.com/vulnerability/d483f7ce-cb3f-4fcb-b060-005cec0ea10f/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.