Lucene search
PatchstackCVE-2024-24849HistoryFeb 21, 2024 - 7:15 a.m.
CVE-2024-24849
2024-02-2107:15:55
CWE-352
Patchstack
web.nvd.nist.gov
57
csrf
vulnerability
mark stockton
quicksand
post filter
jquery plugin
nvd
cve-2024-24849
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in Mark Stockton Quicksand Post Filter jQuery Plugin.This issue affects Quicksand Post Filter jQuery Plugin: from n/a through 3.1.1.
Affected configurations
Node
mark_stocktonquicksand_post_filter_jquery_pluginRange≤3.1.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mark_stockton | quicksand_post_filter_jquery_plugin | * | cpe:2.3:a:mark_stockton:quicksand_post_filter_jquery_plugin:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "quicksand-jquery-post-filter",
"product": "Quicksand Post Filter jQuery Plugin",
"vendor": "Mark Stockton",
"versions": [
{
"lessThanOrEqual": "3.1.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
nvd
nvd
CVE-2024-24849
2024-02-21 07:15:55
prion
prion
Cross site request forgery (csrf)
2024-02-21 07:15:00
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-24849