Lucene search
HistoryApr 15, 2024 - 9:15 a.m.
CVE-2024-32091
cve-2024-32091
cross-site request forgery
tonjoo sangar slider
sangar slider
version 1.3.2
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in Tonjoo Sangar Slider.This issue affects Sangar Slider: from n/a through 1.3.2.
Affected configurations
Node
tonjoosangar_sliderRange≤1.3.2
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "sangar-slider-lite",
"product": "Sangar Slider",
"vendor": "Tonjoo",
"versions": [
{
"lessThanOrEqual": "1.3.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-32091
2024-04-15 09:15:09
wpvulndb
wpvulndb
Sangar Slider <= 1.3.2 - Cross-Site Request Forgery
2024-04-17 00:00:00
cvelist
cvelist
wordfence
wordfence
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
9.0%
Related for CVE-2024-32091