← Back

Gti

gti

1 CVE • 1 product

Products (1)

Click to collapse
Toggle
Throws Spam Away
throws_spam_away
1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-1709
1Gti
1Throws Spam Away
Jun 17, 2026
Jun 8, 2022
N/A· v4
4.3 MEDIUM· v3
4.3 MEDIUM· v2
The Throws SPAM Away WordPress plugin before 3.3.1 does not have CSRF checks in place when deleting comments (either all, spam, or pending), allowing attackers to make a logged in admin delete comments via a CSRF attack