Lucene search
JpcertCVELIST:CVE-2024-25572HistoryApr 11, 2024 - 2:29 a.m.
CVE-2024-25572
2024-04-1102:29:38
jpcert
www.cve.org
cross-site request forgery
website administrator
malicious page
unintended operations
Cross-site request forgery (CSRF) vulnerability exists in Ninja Forms prior to 3.4.31. If a website administrator views a malicious page while logging in, unintended operations may be performed.
CNA Affected
[
{
"vendor": "Saturday Drive",
"product": "Ninja Forms",
"versions": [
{
"version": "prior to 3.4.31",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2024-25572
2024-04-11 03:15:09
cve
cve
CVE-2024-25572
2024-04-11 03:15:09
jvn
jvn
JVN#50361500: Multiple vulnerabilities in WordPress Plugin "Ninja Forms"
2024-04-08 00:00:00