The plugin does not have CSRF check in place when deleting code created by the plugin, which could allow attackers to make a logged in admin delete arbitrary ones via a CSRF attack
https://example.com/wp-admin/admin.php?page=wp-coder&info=del&did=1
Krzysztof Zając
Krzysztof Zając
Yes
2022-07-26 (about 1 years ago)
2022-07-26 (about 1 years ago)
2023-04-22 (about 5 months ago)