Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:56 a.m.3 views

CVE-2024-37478

Cross-Site Request Forgery CSRF vulnerability in wproyal Ashe ashe allows Cross Site Request Forgery.This issue affects Ashe: from n/a through = 2.233...

4.3CVSS5.9AI score0.00191EPSS
Exploits0References1
Circl
Circl
added 2025/01/02 12:19 p.m.6 views

CVE-2024-37478

creationtimestamp| type| source ---|---|--- 2025-01-02 12:19:20+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2pysyhz2l 2025-01-02 17:38:24+00:00| seen| https://infosec.exchange/users/cve/statuses/113759977707852435...

4.3CVSS6.9AI score0.00191EPSS
Exploits0References2
CVE
CVE
added 2025/01/02 12:0 p.m.42 views

CVE-2024-37478

CVE-2024-37478 is a CSRF vulnerability in the WP Royal Ashe theme affecting Ashe versions n/a through 2.233. The issue concerns Cross-Site Request Forgery where an attacker could trigger unintended actions on behalf of a logged-in user. The provided connected documents (NVD, RH, CIRCL, CNNVD, etc...

4.3CVSS5.9AI score0.00191EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/01 12:0 a.m.8 views

WordPress Ashe Theme <= 2.233 is vulnerable to Cross Site Request Forgery (CSRF)

Software Ashe Type Theme Vulnerable versions = 2.233 Fixed in 2.234 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37478 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 01c115634ea3 Credits Dhabaleshwar Das Required...

6.4AI score0.00191EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder