Undergoing Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
CVE has been recently published to the CVE List and has been received by the NVD.
Products
WP Logs Book WordPress plugin
- through 1.0.1
Source
contact@wpscan.com
Tags
CVE-2024-4474 details
Published : June 21, 2024, 6:15 a.m.
Last Modified : June 21, 2024, 11:22 a.m.
Last Modified : June 21, 2024, 11:22 a.m.
Description
The WP Logs Book WordPress plugin through 1.0.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://wpscan.com/vulnerability/71954c60-6a5b-4cac-9920-6d9b787ead9c/ | contact@wpscan.com |
This website uses the NVD API, but is not approved or certified by it.