CVE-2024-38345

July 4, 2024, 1:15 a.m.

None
No Score

Description

A cross-site request forgery vulnerability exists in Sola Testimonials versions prior to 3.0.0. If this vulnerability is exploited, an attacker allows a user who logs in to the WordPress site where the affected plugin is enabled to access a malicious page. As a result, the user may perform unintended operations on the WordPress site.

Product(s) Impacted

Product Versions
Sola Testimonials
  • before 3.0.0

Weaknesses

References

https://jvn.jp/en/jp/JVN34977158/
https://wordpress.org/plugins/sola-testimonials/

Tags

vultures@jpcert.or.jp
2024-07-04
CVE-2024-38345

Date

  • Published: July 4, 2024, 1:15 a.m.
  • Last Modified: July 4, 2024, 1:15 a.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

vultures@jpcert.or.jp

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.