Lucene search
K

4 matches found

Circl
Circl
added 2025/01/02 12:18 p.m.5 views

CVE-2024-37435

creationtimestamp| type| source ---|---|--- 2025-01-02 12:18:58+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2pdlh3f2i 2025-01-02 17:08:22+00:00| seen| https://infosec.exchange/users/cve/statuses/113759859602137887...

8.8CVSS6.9AI score0.00207EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/02 12:0 p.m.28 views

CVE-2024-37435 WordPress Perfect Portfolio theme <= 1.2.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in raratheme Perfect Portfolio perfect-portfolio allows Cross Site Request Forgery.This issue affects Perfect Portfolio: from n/a through = 1.2.0...

4.3CVSS0.00207EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 12:0 p.m.43 views

CVE-2024-37435

CVE-2024-37435 describes a Cross-Site Request Forgery (CSRF) in the WordPress theme “Perfect Portfolio.” Affected: Perfect Portfolio versions up to 1.2.0 (listed as from n/a through 1.2.0). Root cause: CSRF enabling unauthorized actions via crafted requests. Impact (per CVSS v3.1 in the sources):...

8.8CVSS5.9AI score0.00207EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/06/28 12:0 a.m.17 views

WordPress Perfect Portfolio Theme <= 1.2.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software Perfect Portfolio Type Theme Vulnerable versions = 1.2.0 Fixed in 1.2.1 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37435 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 073cf0103125 Credits Dhabaleshwar Das...

6.4AI score0.00207EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder