4 matches found
CVE-2024-35638
Cross-Site Request Forgery CSRF vulnerability in JumpDEMAND Inc. ActiveDEMAND.This issue affects ActiveDEMAND: from n/a through 0.2.43...
CVE-2024-35638 WordPress ActiveDEMAND plugin <= 0.2.43 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in JumpDEMAND Inc. ActiveDEMAND.This issue affects ActiveDEMAND: from n/a through 0.2.43...
CVE-2024-35638
CVE-2024-35638 corresponds to the WordPress ActiveDEMAND plugin (versions <= 0.2.43). According to Patchstack, it is a CSRF vulnerability that can be triggered without authentication; impact is described as low severity (CVSS 4.3). The issue is fixed in version 0.2.44. This CVE entry is active...
WordPress ActiveDEMAND Plugin <= 0.2.43 is vulnerable to Cross Site Request Forgery (CSRF)
Software ActiveDEMAND Type Plugin Vulnerable versions = 0.2.43 Fixed in 0.2.44 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-35638 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 476218797ea5 Credits Joshua Chan Required...