WordPress Watu PRO Plugin <= 4.8.8.4 - Cross-Site Request Forgery
Product
WatuPro
Description
This plugin is prone to a cross site request forgery vulnerabiliy. It allows the attackers to convince an admin to visit a link of their choosing is able to delete quizzes.
Solution
Update the plugin.
Classification
Type Cross Site Request Forgery (CSRF) OWASP Top 10 A8: Cross Site Request Forgery (CSRF)