Lucene search

CVE-2024-4758

🗓️ 26 Jun 2024 06:16:15Reported by WPScanType

cve🔗 web.nvd.nist.gov👁 33 Views🌐 WEB

Muslim Prayer Time BD plugin CSRF vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
WPVulnDB	Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF	5 Jun 202400:00	–	wpvulndb
Patchstack	WordPress Muslim Prayer Time BD Plugin <= 2.4 is vulnerable to Cross Site Request Forgery (CSRF)	26 Jun 202400:00	–	patchstack
NVD	CVE-2024-4758	26 Jun 202406:15	–	nvd
Cvelist	CVE-2024-4758 Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF	26 Jun 202406:00	–	cvelist
wpexploit	Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF	5 Jun 202400:00	–	wpexploit
Vulnrichment	CVE-2024-4758 Muslim Prayer Time BD <= 2.4 - Settings Reset via CSRF	26 Jun 202406:00	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 3, 2024 to June 9, 2024)	13 Jun 202415:35	–	wordfence

Vulners

Vulnrichment

Node

muslim_prayer_time_bdRange≤2.4wordpress

[
  {
    "vendor": "Unknown",
    "product": "Muslim Prayer Time BD",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThanOrEqual": "2.4"
      }
    ],
    "defaultStatus": "affected"
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/64ec57a5-35d8-4c69-bdba-096c2245a0db/

Parameter	Position	Path	Description	CWE
option_page	request body	/wp-admin/options-general.php?page=muslim-prayer-time-bd%2Fadmin-settings.php	CSRF vulnerability allowing unauthorized reset of settings by submitting a form without CSRF tokens.	CWE-352
clear_all	request body	/wp-admin/options-general.php?page=muslim-prayer-time-bd%2Fadmin-settings.php	CSRF vulnerability allowing unauthorized reset of settings by submitting a form without CSRF tokens.	CWE-352

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Jun 2024 06:15Current

7.5High risk

Vulners AI Score7.5

CVSS37.6

EPSS0.00119

SSVC