16.01.2022 The Hacker News: High-Severity Vulnerability in 3 WordPress Plugins Affected 84,000 Websites

Tracked as CVE-2022-0215, the cross-site request forgery (CSRF) flaw is rated 8.8 on the CVSS scale and impacts three plugins maintained by Xootix —
* Login/Signup Popup (Inline Form + Woocommerce),
* Side Cart Woocommerce (Ajax), and
* Waitlist Woocommerce (Back in stock notifier)

#itsec #WordPress