Lucene search
PatchstackCVELIST:CVE-2024-43255HistoryAug 26, 2024 - 8:25 p.m.
CVE-2024-43255 WordPress MyBookTable Bookstore by Stormhill Media plugin <= 3.3.9 - CSRF to XSS vulnerability
2024-08-2620:25:54
CWE-352
Patchstack
www.cve.org
5
wordpress
mybooktable bookstore
stormhill media
csrf
xss
vulnerability
3.3.9
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
17.7%
Cross-Site Request Forgery (CSRF) vulnerability in Stormhill Media MyBookTable Bookstore allows Cross-Site Scripting (XSS).This issue affects MyBookTable Bookstore: from n/a through 3.3.9.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "mybooktable",
"product": "MyBookTable Bookstore",
"vendor": "Stormhill Media",
"versions": [
{
"lessThanOrEqual": "3.3.9",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2024-43255
2024-08-26 21:15:25
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-43255
2024-08-26 21:15:25
wordfence
wordfence
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
17.7%
Related for CVELIST:CVE-2024-43255