Products
HTML Forms WordPress plugin
- before 1.3.34
Source
contact@wpscan.com
Tags
CVE-2024-6412 details
Published : July 31, 2024, 6:15 a.m.
Last Modified : July 31, 2024, 12:57 p.m.
Last Modified : July 31, 2024, 12:57 p.m.
Description
The HTML Forms WordPress plugin before 1.3.34 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
CVSS Score
1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
---|
Weakness
Weakness | Name | Description |
---|
References
URL | Source |
---|---|
https://wpscan.com/vulnerability/9eb0dad6-3c19-4fe4-a20d-d45b51410444/ | contact@wpscan.com |
This website uses the NVD API, but is not approved or certified by it.