VYPR

Becustom

by Muffingroup

CVEs (1)

  • CVE-2022-3747HigNov 29, 2022
    risk 0.57cvss 8.8epss 0.01

    The Becustom plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.5.2. This is due to missing nonce validation when saving the plugin's settings. This makes it possible for unauthenticated attackers to update the plugin's…