Today > | 4 High | 23 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-38345

July 4, 2024, 1:15 a.m.

Product(s) Impacted

Sola Testimonials

  • before 3.0.0

Description

A cross-site request forgery vulnerability exists in Sola Testimonials versions prior to 3.0.0. If this vulnerability is exploited, an attacker allows a user who logs in to the WordPress site where the affected plugin is enabled to access a malicious page. As a result, the user may perform unintended operations on the WordPress site.

Weaknesses

Date

Published: July 4, 2024, 1:15 a.m.

Last Modified: July 4, 2024, 1:15 a.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/ vultures@jpcert.or.jp

https://wordpress.org/ vultures@jpcert.or.jp