Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-3478

May 2, 2024, 1:27 p.m.

Tags

contact@wpscan.com
2024-05-02
CVE-2024-3478

Product(s) Impacted

Herd Effects WordPress plugin

  • before 5.2.7

Herb Effects WordPress plugin

  • before 5.2.7

Description

The Herd Effects WordPress plugin before 5.2.7 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting effects via CSRF attacks

Weaknesses

Date

Published: May 2, 2024, 6:15 a.m.

Last Modified: May 2, 2024, 1:27 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

contact@wpscan.com

References

https://wpscan.com/ contact@wpscan.com