Lucene search
WPScanCVELIST:CVE-2024-6853HistorySep 08, 2024 - 6:00 a.m.
CVE-2024-6853 WP MultiTasking <= 0.1.12 - Welcome Popup Update via CSRF
2024-09-0806:00:02
WPScan
www.cve.org
4
cve-2024-6853
wordpress
csrf
welcome popup
update
EPSS
0.001
Percentile
17.7%
The WP MultiTasking WordPress plugin through 0.1.12 does not have CSRF check when updating welcome popups, which could allow attackers to make logged admins perform such action via a CSRF attack
CNA Affected
[
{
"vendor": "Unknown",
"product": "WP MultiTasking",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThanOrEqual": "0.1.12"
}
],
"defaultStatus": "affected"
}
]Related
cve
cve
CVE-2024-6853
2024-09-08 06:15:02
vulnrichment
vulnrichment
CVE-2024-6853 WP MultiTasking <= 0.1.12 - Welcome Popup Update via CSRF
2024-09-08 06:00:02
nvd
nvd
CVE-2024-6853
2024-09-08 06:15:02
wordfence
wordfence