Core Tweaks Wp Setup Project

core_tweaks_wp_setup_project

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Core Tweaks Wp Setup

core_tweaks_wp_setup

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-24803 1Core Tweaks Wp Setup Project 1Core Tweaks Wp Setup Jun 17, 2026 Feb 28, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The Core Tweaks WP Setup WordPress plugin through 4.1 allows to bulk-set many settings in WordPress, including the admin email, as well as creating a new admin account. There is no CSRF protection in place, allowing an a...Show more The Core Tweaks WP Setup WordPress plugin through 4.1 allows to bulk-set many settings in WordPress, including the admin email, as well as creating a new admin account. There is no CSRF protection in place, allowing an attacker to arbitrary change the admin email or create another admin account and takeover the website via CSRF attacksShow less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2021-24803

1Core Tweaks Wp Setup Project

1Core Tweaks Wp Setup

Jun 17, 2026

Feb 28, 2022

N/A· v4

8.8 HIGH· v3

6.8 MEDIUM· v2

The Core Tweaks WP Setup WordPress plugin through 4.1 allows to bulk-set many settings in WordPress, including the admin email, as well as creating a new admin account. There is no CSRF protection in place, allowing an attacker to arbitrary change the admin email or create another admin account and takeover the website via CSRF attacksShow less