Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-24799
HistoryNov 01, 2021 - 9:15 a.m.

Cross site request forgery (csrf)

2021-11-0109:15:00
PRIOn knowledge base
www.prio-n.com
2

4.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.4%

The Far Future Expiry Header WordPress plugin before 1.5 does not have CSRF check when saving its settings, which could allow attackers to make a logged in admin change them via a CSRF attack.

CPENameOperatorVersion
far_future_expiry_headerlt1.5

4.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.4%