Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
jvnJapan Vulnerability NotesJVN:86206017
HistoryMar 25, 2024 - 12:00 a.m.

JVN#86206017: WordPress Plugin "easy-popup-show" vulnerable to cross-site request forgery

2024-03-2500:00:00
Japan Vulnerability Notes
jvn.jp
6
wordpress
plugin
vulnerable
cross-site request forgery
unsupported

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

WordPress Plugin “easy-popup-show” provided by Ari Susanto contains a cross-site request forgery vulnerability (CWE-352).

Impact

If a user with an administrative privilege views a malicious page while logged in, unintended operations may be performed.

Solution

Stop using the plugin
The developer states that the plugin is no longer supported, therefore stop using the plugin.

Products Affected

  • easy-popup-show all versions

Related

cve 1
cvelist 1
wpvulndb 1
nvd 1
cve
cve
CVE-2024-29009
2024-03-25 05:15:50
cvelist
cvelist
CVE-2024-29009
2024-03-25 04:14:37
wpvulndb
wpvulndb
Easy PopUp Show <= 0.12 - Cross-Site Request Forgery
2024-05-07 00:00:00
nvd
nvd
CVE-2024-29009
2024-03-25 05:15:50

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON
Related for JVN:86206017
cve1cvelist1wpvulndb1nvd1