Products
WP MultiTasking WordPress plugin
- 0.1.12
Source
contact@wpscan.com
Tags
CVE-2024-6853 details
Published : Sept. 8, 2024, 6:15 a.m.
Last Modified : Sept. 8, 2024, 6:15 a.m.
Last Modified : Sept. 8, 2024, 6:15 a.m.
Description
The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check when updating welcome popups, which could allow attackers to make logged admins perform such action via a CSRF attack
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://wpscan.com/vulnerability/d1ce78c3-5d6c-465e-9ce8-6d92f7480333/ | contact@wpscan.com |
This website uses the NVD API, but is not approved or certified by it.