Lucene search
PatchstackCVE-2024-24935HistoryFeb 12, 2024 - 9:15 a.m.
CVE-2024-24935
2024-02-1209:15:12
CWE-352
Patchstack
web.nvd.nist.gov
25
cve
2024
24935
cross-site request forgery
csrf
vulnerability
wpsimpletools
basic log viewer
nvd
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in WpSimpleTools Basic Log Viewer.This issue affects Basic Log Viewer: from n/a through 1.0.4.
Affected configurations
Node
wpsimpletoolsbasic_log_viewerRange≤1.0.4wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wpsimpletools | basic_log_viewer | * | cpe:2.3:a:wpsimpletools:basic_log_viewer:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "wpsimpletools-log-viewer",
"product": "Basic Log Viewer",
"vendor": "WpSimpleTools",
"versions": [
{
"lessThanOrEqual": "1.0.4",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Basic Log Viewer <= 1.0.4 - Cross-Site Request Forgery via wpst_lw_viewer
2024-02-12 00:00:00
nvd
nvd
CVE-2024-24935
2024-02-12 09:15:12
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2024-02-12 09:15:00
wordfence
wordfence
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5.6
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-24935