Lucene search
WPScanCVELIST:CVE-2024-3478HistoryMay 02, 2024 - 6:00 a.m.
CVE-2024-3478 Herd Effects < 5.2.7 - Effect Deletion via CSRF
2024-05-0206:00:03
WPScan
www.cve.org
1
cve-2024-3478
herd effects
wordpress
csrf
vulnerability
plugin
csrf attacks
The Herd Effects WordPress plugin before 5.2.7 does not have CSRF checks in some bulk actions, which could allow attackers to make logged in admins perform unwanted actions, such as deleting effects via CSRF attacks
CNA Affected
[
{
"vendor": "Unknown",
"product": "Herd Effects ",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "5.2.7"
}
],
"defaultStatus": "unaffected"
}
]Related
wpvulndb
wpvulndb
Herd Effects < 5.2.7 - Effect Deletion via CSRF
2024-04-11 00:00:00
cve
cve
CVE-2024-3478
2024-05-02 06:15:51
wpexploit
wpexploit
Herd Effects < 5.2.7 - Effect Deletion via CSRF
2024-04-11 00:00:00
nvd
nvd
CVE-2024-3478
2024-05-02 06:15:51
wordfence
wordfence