2 matches found
CVE-2024-39678
creationtimestamp| type| source ---|---|--- 2024-07-18 04:15:38+00:00| seen| https://t.me/cvedetector/1134 2025-02-14 09:47:00+00:00| seen| Telegram/X-iiMcmbKZEdTOtLK9-DS5EMdqyQU0S4m4A2CR5zBlWLCAk...
CVE-2024-39678
CVE-2024-39678 affects the Cooked WordPress plugin (Cooked – Recipe Management). The issue is CSRF due to missing/incorrect nonce validation on the AJAX action handler, allowing tricked actions under an authenticated user. Affected versions are up to and including 1.7.15.4; remediation is to upgr...