← Back

Wp Chgfontsize

wp-chgfontsize

Vendor: Wp Chgfontsize Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-1764
1Wp Chgfontsize Project
1Wp Chgfontsize
Jun 17, 2026
Jun 13, 2022
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
The WP-chgFontSize WordPress plugin through 1.8 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored Cross-S...Show more
The WP-chgFontSize WordPress plugin through 1.8 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored Cross-Site Scripting due to the lack of sanitisation and escapingShow less