← Back

Prayer

prayer

Vendor: Goprayer • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-4751
1Goprayer
1Prayer
Jun 17, 2026
Jun 14, 2024
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The WP Prayer II WordPress plugin through 2.4.7 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
CVE-2024-4480
1Goprayer
1Prayer
Jun 17, 2026
Jun 14, 2024
N/A· v4
6.1 MEDIUM· v3
N/A· v2
The WP Prayer II WordPress plugin through 2.4.7 does not have CSRF check in place when updating its email settings, which could allow attackers to make a logged in admin change them via a CSRF attack