CVE-2023-39158

Name of the Vulnerable Software and Affected Versions theDotstore Banner Management For WooCommerce plugin versions <= 2.4.2

Description A Cross-Site Request Forgery (CSRF) issue affects the plugin, allowing unauthorized actions to be performed on behalf of a user without their knowledge.

Recommendations For versions <= 2.4.2, update to a version higher than 2.4.2 to resolve the issue. As a temporary workaround, consider restricting access to sensitive functions until a patch is available. Avoid using the plugin until the issue is resolved.