CVE-2024-5030
18.11.2024, 06:15
The CM Table Of Contents WordPress plugin before 1.2.3 does not have CSRF check in place when resetting its settings, which could allow attackers to make a logged in admin perform such action via a CSRF attack
| Vendor | Product | Version |
|---|---|---|
| creativemindssolutions | cm-table-of-content | 𝑥 < 1.2.3 |
| cminds | cm_table_of_contents | 𝑥 < 1.2.3 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration