3 matches found
CVE-2024-0796 Active Products Tables for WooCommerce. Professional products tables for WooCommerce store <= 1.0.6.1 - Cross-Site Request Forgery
The Active Products Tables for WooCommerce. Professional products tables for WooCommerce store plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.6.1. This is due to missing or incorrect nonce validation on several functions corresponding to...
CVE-2024-0796
CVE-2024-0796: Active Products Tables for WooCommerce (Profit–Products–Tables for WooCommerce) is vulnerable to Cross-Site Request Forgery due to missing/incorrect nonce validation on AJAX actions. Affected versions are up to and including 1.0.6.1; exploitation requires an unauthenticated attacke...
WordPress Active Products Tables for WooCommerce Plugin <= 1.0.6.1 is vulnerable to Cross Site Request Forgery (CSRF)
Software Active Products Tables for WooCommerce Type Plugin Vulnerable versions = 1.0.6.1 Fixed in 1.0.6.2 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-0796 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 38672ca79125...