Lucene search
HistoryApr 15, 2024 - 5:15 a.m.
CVE-2024-1306
smart forms
wordpress
csrf
attacks
medium risk
The Smart Forms WordPress plugin before 2.6.94 does not have CSRF checks in some places, which could allow attackers to make logged-in users perform unwanted actions via CSRF attacks, such as editing entries, and we consider it a medium risk.
Related
cve
cve
CVE-2024-1306
2024-04-15 05:15:14
wpexploit
wpexploit
Smart Forms < 2.6.94 - Edit Entries via CSRF
2024-03-25 00:00:00
wpvulndb
wpvulndb
Smart Forms < 2.6.94 - Edit Entries via CSRF
2024-03-25 00:00:00
cvelist
cvelist
CVE-2024-1306 Smart Forms < 2.6.94 - Edit Entries via CSRF
2024-04-15 05:00:03
wordfence
wordfence