2 matches found
CVE-2024-0847
The 5280 Bootstrap Modal Contact Form plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation in class-sbmm-list-table.php. This makes it possible for unauthenticated attackers to bulk delete...
WordPress 5280 Bootstrap Modal Contact Form Plugin <= 1.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software 5280 Bootstrap Modal Contact Form Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-0847 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 00ef5df5a2aa Credits...