3 matches found
CVE-2024-4100
creationtimestamp| type| source ---|---|--- 2024-07-09 11:50:10+00:00| seen| https://t.me/cvedetector/294...
CVE-2024-4100 Pricing Table <= 2.0.1 - Cross-Site Request Forgery via ajax()
The Pricing Table plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.1. This is due to missing or incorrect nonce validation on the ajax function. This makes it possible for unauthenticated attackers to perform a variety of actions related t...
WordPress Pricing Table Plugin <= 2.0.1 is vulnerable to Cross Site Request Forgery (CSRF)
Software Pricing Table Type Plugin Vulnerable versions = 2.0.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-4100 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 869d1c2806f1 Credits Benedictus Jovan aillesi...