3 matches found
CVE-2024-2904
Cross-Site Request Forgery CSRF vulnerability in Extend Themes Calliope.This issue affects Calliope: from n/a through 1.0.33...
CVE-2024-2904
CVE-2024-2904 affects the WordPress Calliope theme (versions up to 1.0.33). The issue is a Cross-Site Request Forgery (CSRF) vulnerability in the Calliope theme, with PatchStack listing a fix in 1.0.35. Other sources corroborate the CSRF impact and affected range (
WordPress Calliope Theme <= 1.0.33 is vulnerable to Cross Site Request Forgery (CSRF)
Software Calliope Type Theme Vulnerable versions = 1.0.33 Fixed in 1.0.35 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-2904 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e01a6aa98fcc Credits Dhabaleshwar Das Required...