CVE-2023-25708
Description
Cross-Site Request Forgery (CSRF) vulnerability in Rextheme WP VR – 360 Panorama and Virtual Tour Builder For WordPress plugin <= 8.2.7 versions.
CWE
- CWE-352 — CWE-352 Cross-Site Request Forgery (CSRF)
Affected
- Rextheme / WP VR – 360 Panorama and Virtual Tour Builder For WordPress — v=n/a ≤8.2.7 [affected]
CVSS
- 3.1 score=4.3 severity=MEDIUM
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
References
Source
cvelistV5-main/cves/2023/25xxx/CVE-2023-25708.json