CVE-2023-23721

Name of the Vulnerable Software and Affected Versions David Gwyer Admin Log plugin versions <= 1.50

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability. This means an attacker can trick a user into performing unintended actions on a web application that the user is authenticated to.

Recommendations For versions <= 1.50, update to a version that contains a fix for this issue. If no specific fix is provided for a particular version, ensure to apply any available patches or updates to mitigate the risk. As a temporary workaround, consider implementing additional validation for requests to prevent unauthorized actions.