4 matches found
CVE-2024-37543
creationtimestamp| type| source ---|---|--- 2025-01-02 12:19:43+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2qp2vig2f 2025-01-02 18:08:27+00:00| seen| https://infosec.exchange/users/cve/statuses/113760095831704696...
CVE-2024-37543 WordPress Ultimate Auction plugin <= 4.2.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Nitesh Ultimate Auction ultimate-auction allows Cross Site Request Forgery.This issue affects Ultimate Auction : from n/a through = 4.2.5...
CVE-2024-37543
CVE-2024-37543 corresponds to a CSRF vulnerability in the WordPress plugin Ultimate Auction (by Nitesh Singh) affecting versions up to 4.2.5. Public sources confirm this is a Cross-Site Request Forgery issue used to perform unauthorized actions on a user’s account. The CVE’s CVSSv3.1 base score i...
WordPress Ultimate Auction Plugin <= 4.2.5 is vulnerable to Cross Site Request Forgery (CSRF)
Software Ultimate Auction Type Plugin Vulnerable versions = 4.2.5 Fixed in 4.2.6 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37543 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ed8502cd34a3 Credits Majed Refaea...