Lucene search
PatchstackCVE-2024-24875HistoryFeb 12, 2024 - 9:15 a.m.
CVE-2024-24875
2024-02-1209:15:12
CWE-352
Patchstack
web.nvd.nist.gov
29
cve-2024-24875
csrf
yannick lefebvre
link library
nvd
vulnerability
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in Yannick Lefebvre Link Library.This issue affects Link Library: from n/a through 7.5.13.
Affected configurations
Node
yannick_lefebvrelink_libraryRangeβ€7.5.13wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| yannick_lefebvre | link_library | * | cpe:2.3:a:yannick_lefebvre:link_library:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "link-library",
"product": "Link Library",
"vendor": "Yannick Lefebvre",
"versions": [
{
"changes": [
{
"at": "7.6",
"status": "unaffected"
}
],
"lessThanOrEqual": "7.5.13",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-24875
2024-02-12 09:15:12
prion
prion
Cross site request forgery (csrf)
2024-02-12 09:15:00
wpvulndb
wpvulndb
Link Library < 7.6 - Cross-Site Request Forgery via action_admin_init
2024-02-08 00:00:00
vulnrichment
vulnrichment
cvelist
cvelist
wordfence
wordfence
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-24875