GHSA-v664-p69f-2qfg
GitHub Security Advisory
⚠ Unreviewed
LOW
Has CVE
Advisory Details
The CM Table Of Contents WordPress plugin before 1.2.3 does not have CSRF check in place when resetting its settings, which could allow attackers to make a logged in admin perform such action via a CSRF attack
Related CVEs
Key Information
2.5
/10
Dataset
Last updated: July 12, 2025 6:29 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.