Lucene search
HistoryApr 22, 2024 - 8:15 a.m.
CVE-2024-32693
csrf
valvepress automatic
security vulnerability
version 3.93.0
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in ValvePress Automatic.This issue affects Automatic: from n/a before 3.93.0.
Affected configurations
Node
valvepresswordpress_automatic_pluginRange<3.93.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| valvepress | wordpress_automatic_plugin | * | cpe:2.3:a:valvepress:wordpress_automatic_plugin:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Automatic",
"vendor": "ValvePress",
"versions": [
{
"changes": [
{
"at": "3.93.0",
"status": "unaffected"
}
],
"lessThan": "3.93.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
WordPress Automatic Plugin < 3.93.0 Cross-Site Request Forgery
2024-04-24 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2024-32693
2024-04-22 08:15:38
vulnrichment
vulnrichment
wordfence
wordfence
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L
6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for CVE-2024-32693