Lucene search
K

6 matches found

NVD
NVD
added 2024/10/29 11:15 a.m.15 views

CVE-2024-49672

Cross-Site Request Forgery CSRF vulnerability in giffordcheung Google Docs RSVP google-docs-rsvp-guestlist allows Stored XSS.This issue affects Google Docs RSVP: from n/a through = 2.0.1...

7.1CVSS0.00166EPSS
Exploits0References1
OSV
OSV
added 2024/10/29 11:15 a.m.11 views

CVE-2024-49672

Cross-Site Request Forgery CSRF vulnerability in Gifford Cheung, Brian Watanabe, Chongsun Ahn Google Docs RSVP allows Stored XSS.This issue affects Google Docs RSVP: from n/a through 2.0.1...

6.1CVSS5.8AI score0.00166EPSS
Exploits0References1
CVE
CVE
added 2024/10/29 11:4 a.m.58 views

CVE-2024-49672

CVE-2024-49672 concerns the Google Docs RSVP WordPress plugin (versions n/a through 2.0.1). The entry documents a CSRF that enables Stored Cross-Site Scripting (XSS) in affected installs. Public details across connected sources consistently describe the issue as a CSRF to stored XSS vulnerability...

7.1CVSS5.9AI score0.00166EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/29 11:4 a.m.13 views

CVE-2024-49672 WordPress Google Docs RSVP plugin <= 2.0.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in giffordcheung Google Docs RSVP google-docs-rsvp-guestlist allows Stored XSS.This issue affects Google Docs RSVP: from n/a through = 2.0.1...

7.1CVSS5.9AI score0.00166EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/29 11:4 a.m.16 views

CVE-2024-49672 WordPress Google Docs RSVP plugin <= 2.0.1 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in giffordcheung Google Docs RSVP google-docs-rsvp-guestlist allows Stored XSS.This issue affects Google Docs RSVP: from n/a through = 2.0.1...

7.1CVSS0.00166EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/10/21 12:0 a.m.12 views

WordPress Google Docs RSVP Plugin <= 2.0.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software Google Docs RSVP Type Plugin Vulnerable versions = 2.0.1 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-49672 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 41657f6782b9 Credits SOPROBRO Required...

7.1CVSS6.6AI score0.00166EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder