Description
qdPM 9.2 allows Cross-Site Request Forgery (CSRF) via the index.php/myAccount/update URI.
Remediation
References
Related Vulnerabilities
phpMyAdmin Improper Input Validation Vulnerability (CVE-2008-4096)
WordPress Plugin Elementor Website Builder Arbitrary File Upload (3.6.2)
WordPress Plugin Insert or Embed Articulate Content into WordPress Directory Traversal (4.2999)
WebLogic Improper Input Validation Vulnerability (CVE-2019-12400)