Lucene search
+L

4 matches found

NVD
NVD
added 2024/03/29 5:15 p.m.18 views

CVE-2024-30468

Cross-Site Request Forgery CSRF vulnerability in All In One WP Security & Firewall Team All In One WP Security & Firewall.This issue affects All In One WP Security & Firewall: from n/a through 5.2.6...

4.3CVSS4.6AI score0.00212EPSS
Exploits0References1
CVE
CVE
added 2024/03/29 4:20 p.m.67 views

CVE-2024-30468

All In One WP Security & Firewall (AIOS) for WordPress is affected by a Cross-Site Request Forgery (CSRF) vulnerability in versions up to 5.2.6, with fix released in 5.2.7. The issue can be triggered by unauthenticated attackers exploiting CSRF to manipulate actions triggered by site administrato...

4.3CVSS5.2AI score0.00212EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/29 4:20 p.m.25 views

CVE-2024-30468 WordPress All-In-One Security (AIOS) – Security and Firewall plugin <= 5.2.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in All In One WP Security & Firewall Team All In One WP Security & Firewall.This issue affects All In One WP Security & Firewall: from n/a through 5.2.6...

4.3CVSS5AI score0.00212EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.12 views

WordPress All In One WP Security & Firewall Plugin <= 5.2.6 is vulnerable to Cross Site Request Forgery (CSRF)

Software All In One WP Security & Firewall Type Plugin Vulnerable versions = 5.2.6 Fixed in 5.2.7 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-30468 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 4458bfd0a1fc Credits...

4.3CVSS6.7AI score0.00212EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder