VYPR

Cool Timeline

by WordPress

CVEs (1)

  • CVE-2020-36738MedJul 1, 2023
    risk 0.21cvss 4.3epss 0.00

    The Cool Timeline (Horizontal & Vertical Timeline) plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0.2. This is due to missing or incorrect nonce validation on the ctl_save() function. This makes it possible for…