← Back to CVE List
CVE-2022-2762
The AdminPad WordPress plugin before 2.2 does not have CSRF check when updating admin's note, allowing attackers to make a logged in admin update their notes via a CSRF attack
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt