4 matches found
CVE-2024-37458
CVE-2024-37458 is a CSRF vulnerability in the WordPress theme ExtendThemes Highlight, affecting the Highlight theme versions from unspecified pre-1.0.x up to 1.0.29. The connected records confirm the vulnerability is CSRF (Cross Site Request Forgery) and reference WordPress/Red Hat and CVE databa...
CVE-2024-37458 WordPress Highlight theme <= 1.0.29 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in extendthemes Highlight highlight allows Cross Site Request Forgery.This issue affects Highlight: from n/a through = 1.0.29...
WordPress Highlight theme <= 1.0.29 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Theme Highlight versions = 1.0.29...
WordPress Highlight Theme <= 1.0.29 is vulnerable to Cross Site Request Forgery (CSRF)
Software Highlight Type Theme Vulnerable versions = 1.0.29 Fixed in 1.0.30 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37458 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3256d2afc0e1 Credits Dhabaleshwar Das Require...