Description
e107 2.1.7 has CSRF resulting in arbitrary user deletion.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Customer Reviews Cross-Site Scripting (3.5.5)
WordPress Plugin ULTIMATE TABLES SQL Injection (1.5)
Prototype CVE-2020-27511 Vulnerability (CVE-2020-27511)
WordPress Plugin NextGEN Gallery-WordPress Gallery 'swfupload.swf' Cross-Site Scripting (1.9.7)
WordPress Plugin Thank You Counter Button Multiple Cross-Site Scripting Vulnerabilities (1.8.7)