The del_reistered_domains AJAX action of the plugin does not have any CSRF checks, and is vulnerable to a CSRF attack
https://example.com/wp-admin/admin-ajax.php?action=del_reistered_domain&id=1
Harald Eilertsen (JetPack)
Harald Eilertsen
Yes
2021-09-13 (about 8 months ago)
2021-09-13 (about 8 months ago)
2022-04-08 (about 1 months ago)