CVE-2024-12280
27.01.2025, 06:15
The WP Customer Area WordPress plugin through 8.2.4 does not have CSRF check in place when deleting its logs, which could allow attackers to make a logged in to delete them via a CSRF attack
| Vendor | Product | Version |
|---|---|---|
| marvinlabs | wp_customer_area | 𝑥 < 8.2.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration