Lucene search
+L

5 matches found

WPVulnDB
WPVulnDB
added 2024/04/04 12:0 a.m.22 views

Tumult Hype Animations < 1.9.12 - Cross-Site Request Forgery to Cross-Site Scripting

Description The Tumult Hype Animations plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.9.11. This is due to missing or incorrect nonce validation on the hypeanimationsupdatecontainer function. This makes it possible for unauthenticated...

4.3CVSS6AI score0.00186EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/03/29 5:15 p.m.18 views

CVE-2024-30460

Cross-Site Request Forgery CSRF vulnerability in Tumult Inc Tumult Hype Animations.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

4.3CVSS4.6AI score0.00186EPSS
Exploits0References1
CVE
CVE
added 2024/03/29 4:32 p.m.63 views

CVE-2024-30460

CVE-2024-30460 concerns a Cross-Site Request Forgery in the WordPress plugin Tumult Hype Animations (versions

4.3CVSS5.2AI score0.00186EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/29 4:32 p.m.33 views

CVE-2024-30460 WordPress Tumult Hype Animations plugin <= 1.9.11 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Tumult Inc Tumult Hype Animations.This issue affects Tumult Hype Animations: from n/a through 1.9.11...

4.3CVSS4.9AI score0.00186EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.11 views

WordPress Tumult Hype Animations Plugin <= 1.9.11 is vulnerable to Cross Site Request Forgery (CSRF)

Software Tumult Hype Animations Type Plugin Vulnerable versions = 1.9.11 Fixed in 1.9.12 OWASP Top 10 A4: Insecure Design Classification Cross Site Request Forgery CSRF CVE CVE-2024-30460 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID c704327afb62 Credits Majed Refaea...

4.3CVSS6.7AI score0.00186EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder