3 matches found
CVE-2024-48037
creationtimestamp| type| source ---|---|--- 2024-10-17 15:48:30+00:00| seen| https://t.me/cvedetector/8178...
CVE-2024-48037
CVE-2024-48037 concerns the WordPress plugin Contact Form Widget (Contact Form Widget: Contact Query, Contact Page, Form Maker, Query Table) with versions 1.4.2 and earlier. The vulnerability is a CSRF flaw that could allow unauthorized state-changing requests from authenticated or possibly unaut...
WordPress Contact Form Widget Plugin <= 1.4.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Contact Form Widget Type Plugin Vulnerable versions = 1.4.2 Fixed in 1.4.3 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-48037 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 5cb5ac9f9e50 Credits Abdi Pranata...