CVE-2024-7862
12.09.2024, 06:15
The blogintroduction-wordpress-plugin WordPress plugin through 0.3.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
| Vendor | Product | Version |
|---|---|---|
| blogintroduction_wordpress_plugin | blogintroduction_wordpress_plugin | 𝑥 ≤ 0.3.0 |
| kimhuebel | blogintroduction-wordpress-plugin | 𝑥 ≤ 0.3.0 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration