3 matches found
CVE-2024-32728
Cross-Site Request Forgery CSRF vulnerability in Cozmoslabs Paid Member Subscriptions.This issue affects Paid Member Subscriptions: from n/a through 2.11.0...
CVE-2024-32728
CVE-2024-32728 is a CSRF vulnerability in Cozmoslabs Paid Member Subscriptions (WordPress). The entry states: Cross-Site Request Forgery vulnerability affecting Paid Member Subscriptions from n/a through 2.11.0, but the provided documents do not disclose the exact root cause, affected actions wit...
WordPress Paid Member Subscriptions Plugin <= 2.11.0 is vulnerable to Cross Site Request Forgery (CSRF)
Software Paid Member Subscriptions Type Plugin Vulnerable versions = 2.11.0 Fixed in 2.11.1 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32728 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 208bd8186051 Credits...