3 matches found
CVE-2024-13436
creationtimestamp| type| source ---|---|--- 2025-03-11 07:35:36+00:00| seen| https://t.me/cvedetector/20033 2025-03-11 08:00:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lk3lxsxpat2m...
CVE-2024-13436
The Appsero Helper plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.2. This is due to missing or incorrect nonce validation on the 'appserohelper' page. This makes it possible for unauthenticated attackers to update settings and inject...
CVE-2024-13436
CVE-2024-13436 concerns the WordPress plugin Appsero Helper. The connected documents confirm a Cross-Site Request Forgery (CSRF) vulnerability present in all versions up to and including 1.3.2, caused by missing or incorrect nonce validation on the appsero_helper page. This lets unauthenticated a...