← Back to CVE List
CVE-2024-7817
The Misiek Photo Album WordPress plugin through 1.4.3 does not have CSRF checks in some places, which could allow attackers to make logged in users delete arbitrary albums via a CSRF attack
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt