WP CSRF JUN 2024
WP Cross-Site Request Forgery
Tailored Woo/WP Security Report
Be informed about the latest WP Cross-Site Request Forgery, identified and reported publicly. As these WP CSRF JUN 2024 vulnerabilities have a severe negative impact on any WordPress Security, consider our security audit.
It is a -68% DECREASE compared to previous month, as specifically targeted Cross-Site Request Forgeries. Consider for your online safety, a tailored WP/Woo Security AUDIT, – OR – switching with a TOP10LIST alternative WP Security Plugin – OR – Hire professionals for tailored WP Security.
WHO needs tailored WP security? EVERYBODY!
Today’s reality needs a Web Application Firewall (WAF) plus an Intrusion Prevention System (IPS) to mitigate “gazillion” different threats in your WordPress. Get your WP Cross-Site Request Forgery Patch Management.
The following cases made headlines PUBLICLY in the WP CSRF JUN 2024 & WP Cross-Site Request Forgery category:
| Add Custom CSS and JS | Cross-Site Scritping (XSS) via Cross-Site Request Forgery (CSRF) |
| ADFO | Cross-Site Request Forgery (CSRF) |
| AffiEasy | Cross-Site Request Forgery (CSRF) to Various Actions |
| Arigato Autoresponder and Newsletter | Cross-Site Request Forgery (CSRF) |
| Barcode Scanner with Inventory & Order Manager | Cross-Site Request Forgery (CSRF) |
| Base64 Encoder/Decoder | Settings Reset (BAC) via Cross-Site Request Forgery (CSRF) |
| Base64 Encoder/Decoder | Cross-Site Scritping (XSS) via Cross-Site Request Forgery (CSRF) |
| Bulk Posts Editing For WordPress | Cross-Site Request Forgery (CSRF) |
| Business Card | Multiple Cross-Site Request Forgery (CSRF) |
| Button Generator – easily Button Builder | Button Deletion via Cross-Site Request Forgery (CSRF) |
| Church Admin | Cross-Site Request Forgery (CSRF) |
| Clearfy Cache | Cross-Site Request Forgery (CSRF) |
| Comparison Slider | Cross-Site Request Forgery (CSRF) |
| Consus Theme | Cross-Site Request Forgery (CSRF) |
| Counter Box | Counter Deletion via Cross-Site Request Forgery (CSRF) |
| DS Site Message | Cross-Site Request Forgery (CSRF) |
| Easy Digital Downloads | Cross-Site Request Forgery (CSRF) |
| EmpowerWP Theme | Cross-Site Request Forgery (CSRF) |
| Fast Custom Social Share by CodeBard | Cross-Site Request Forgery (CSRF) |
| Float menu | Menu Deletion via Cross-Site Request Forgery (CSRF) |
| Herd Effects | Effect Deletion via Cross-Site Request Forgery (CSRF) |
| HL Twitter | Multiple Cross-Site Request Forgery (CSRF) |
| Hostel | Cross-Site Request Forgery (CSRF) |
| Integration for Contact Form 7 and Constant Contact | Cross-Site Request Forgery (CSRF) |
| Integration for Contact Form 7 and Salesforce | Cross-Site Request Forgery (CSRF) |
| Integration for Contact Form 7 HubSpot | Cross-Site Request Forgery (CSRF) |
| Integration for Pipedrive and Contact Form 7, WPForms, Elementor, Ninja Forms | Cross-Site Request Forgery (CSRF) |
| Joli FAQ SEO – WordPress FAQ Plugin | Cross-Site Request Forgery (CSRF) |
| Ketos Theme | Cross-Site Request Forgery (CSRF) |
| KKProgressbar2 Free | Progress Bar Deletion via Cross-Site Request Forgery (CSRF) |
| KKProgressbar2 Free | Cross-Site Scritping (XSS) via Cross-Site Request Forgery (CSRF) |
| LetterPress | Subscriber Deletion via Cross-Site Request Forgery (CSRF) |
| Mindscape Theme | Cross-Site Request Forgery (CSRF) |
| Modal Window | Modal Deletion via Cross-Site Request Forgery (CSRF) |
| NextScripts | Cross-Site Request Forgery (CSRF) to Arbitrary Post Deletion |
| Niveau Theme | Cross-Site Request Forgery (CSRF) |
| Oasis Theme | Cross-Site Request Forgery (CSRF) |
| Popup Box | Popup Deletion via Cross-Site Request Forgery (CSRF) |
| Popup box | Cross-Site Request Forgery (CSRF) to Cross-Site Scritping (XSS) |
| reCAPTCHA Jetpack | Settings Update (BAC) via Cross-Site Request Forgery (CSRF) |
| reCAPTCHA Jetpack | Cross-Site Scritping (XSS) via Cross-Site Request Forgery (CSRF) |
| Restaurant and Cafe Theme | Cross-Site Request Forgery (CSRF) |
| ShortPixel Adaptive Images | Cross-Site Request Forgery (CSRF) |
| Side Menu Lite | Menu Deletion via Cross-Site Request Forgery (CSRF) |
| SimpleShop | Cross-Site Request Forgery (CSRF) |
| Skyline WP Theme | Cross-Site Request Forgery (CSRF) |
| Soccer Engine | Cross-Site Request Forgery (CSRF) |
| Social Warfare | Cross-Site Request Forgery (CSRF) |
| Squelch Tabs and Accordions Shortcodes | Cross-Site Request Forgery (CSRF) |
| Sticky Buttons | Button Deletion via Cross-Site Request Forgery (CSRF) |
| Stop Spammers | Cross-Site Request Forgery (CSRF) via sfs_process |
| TranslatePress | Cross-Site Request Forgery (CSRF) |
| UnGallery | Cross-Site Scritping (XSS) via Cross-Site Request Forgery (CSRF) |
| Unyson | Cross-Site Request Forgery (CSRF) |
| WebinarPress | Cross-Site Request Forgery (CSRF) |
| Wow Skype Buttons | Button Deletion via Cross-Site Request Forgery (CSRF) |
| WPCal.io – Easy Meeting Scheduler | Cross-Site Request Forgery (CSRF) |
| WP Favorite Posts | Cross-Site Request Forgery (CSRF) |
| WP Prayer | Multiple Cross-Site Request Forgery (CSRF) |
| WP Stacker | Cross-Site Scritping (XSS) via Cross-Site Request Forgery (CSRF) |
| WP To Do | Multiple Cross-Site Request Forgery (CSRF) |
| WP ViperGB | Cross-Site Request Forgery (CSRF) |
| Zeka Theme | Cross-Site Request Forgery (CSRF) |
| WordPress CSRF & Cross-Site Request Forgery reported in 2023: | 949 |
| WordPress CSRF & Cross-Site Request Forgery reported in 2024: | 418 |
WHO needs tailored WP Maintenance? EVERYBODY!
Today’s reality requires daily clean-ups with database optimisations, weekly updates and upgrades for both free & premium modules, plus the occasional emergency changes when critical vulnerabilities are publicly disclosed without patches. Order WP Cross-Site Request Forgery Patch Management.
Security is not a single-task job
Need tailored WP Security and got no clue where to start? Hire an expert. Pay a coffee per week or figure it out yourself.
