3 matches found
CVE-2024-31434
Cross-Site Request Forgery CSRF vulnerability in Stefano Lissa & The Newsletter Team Newsletter.This issue affects Newsletter: from n/a through 8.0.6...
CVE-2024-31434
Technical details for CVE-2024-31434 are not provided in the supplied documents. Monitor official advisories for affected Newsletter plugin versions up to 8.0.6 and vendor patches.
WordPress Newsletter Plugin <= 8.0.6 is vulnerable to Cross Site Request Forgery (CSRF)
Software Newsletter Type Plugin Vulnerable versions = 8.0.6 Fixed in 8.0.7 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-31434 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID b4d0ee5b28fa Credits Dhabaleshwar Das Require...