2 matches found
CVE-2024-13432
creationtimestamp| type| source ---|---|--- 2025-01-18 07:16:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfyrberptb2j 2025-01-18 07:23:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113848157418768033 2025-01-18 07:39:20+00:00| seen|...
CVE-2024-13432 Webcamconsult <= 1.5.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting
The Webcamconsult plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.0. This is due to missing or incorrect nonce validation on a function. This makes it possible for unauthenticated attackers to update settings and inject malicious web...