CVE-2021-24725

Summary

The Comment Link Remove and Other Comment Tools WordPress plugin before 2.1.6 does not have CSRF check in its 'Delete comments easily', which could allow attackers to make logged in admin delete arbitrary comments

Affected Software

VendorProductVersion RangeStatus
UnknownComment Link Remove and Other Comment Tools2.1.6 < 2.1.6affected

Weaknesses

  • CWE-352: CWE-352 Cross-Site Request Forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

References