← Back

Genie Wp Favicon Project

genie_wp_favicon_project

1 CVE • 1 product

Products (1)

Click to collapse
Toggle
Genie Wp Favicon
genie_wp_favicon
1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-24674
1Genie Wp Favicon Project
1Genie Wp Favicon
Jun 17, 2026
Nov 8, 2021
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
The Genie WP Favicon WordPress plugin through 0.5.2 does not have CSRF in place when updating the favicon, which could allow attackers to make a logged in admin change it via a CSRF attack