Description
Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Kadence WooCommerce Email Designer PHP Object Injection (1.5.6)
MySQL CVE-2021-2208 Vulnerability (CVE-2021-2208)
WordPress Plugin Google Doc Embedder SQL Injection (2.5.14)
Python URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-28861)
WordPress Plugin Live Product Editor for WooCommerce Security Bypass (4.6.2)