Description
Cross-site request forgery (CSRF) vulnerability in the subscription page editor (spageedit) in phpList before 3.0.6 allows remote attackers to hijack the authentication of administrators via a request to admin/.
Remediation
References
Related Vulnerabilities
WordPress Plugin Content Copy Protection & Prevent Image Save Cross-Site Request Forgery (1.3)
WordPress Plugin FireStorm Professional Real Estate Multiple SQL Injection Vulnerabilities (2.05.01)
ownCloud Other Vulnerability (CVE-2022-25339)
WordPress Plugin Admin side data storage for Contact Form 7 Cross-Site Scripting (1.1.1)