Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-40488

Aug. 12, 2024, 1:41 p.m.

Tags

cve@mitre.org
2024-08-12
CVE-2024-40488

Product(s) Impacted

Kashipara Live Membership System

  • 1.0

Description

A Cross-Site Request Forgery (CSRF) vulnerability was found in the Kashipara Live Membership System v1.0. This could lead to an attacker tricking the administrator into deleting valid member data via a crafted HTML page, as demonstrated by a Delete Member action at the /delete_members.php.

Weaknesses

Date

Published: Aug. 12, 2024, 1:38 p.m.

Last Modified: Aug. 12, 2024, 1:41 p.m.

Status : Undergoing Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

cve@mitre.org

References

https://capec.mitre.org/ cve@mitre.org
https://github.com/ cve@mitre.org