3 matches found
CVE-2024-0374
creationtimestamp| type| source ---|---|--- 2024-02-05 23:31:27+00:00| seen| https://t.me/ctinow/179597 2024-02-18 12:36:35+00:00| seen| https://t.me/ctinow/187229...
CVE-2024-0374
The Views for WPForms – Display & Edit WPForms Entries on your site frontend plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2.2. This is due to missing or incorrect nonce validation on the 'createview' function. This makes it possible for...
CVE-2024-0374
CVE-2024-0374 affects the WordPress plugin Views for WPForms – Display & Edit WPForms Entries on your site frontend. The issue is CSRF due to missing/incorrect nonce validation in the create_view function, allowing unauthenticated attackers to create views via a forged request if they trick an ad...