2 matches found
CVE-2024-51638
CVE-2024-51638 is a CSRF-to-Stored XSS vulnerability in the WordPress plugin Awesome Shortcodes For Genesis (versions up to 1.1.8). Exploitation is implied to enable stored XSS via CSRF context; CVSSv3.1 base score 7.1 (high). Public references indicate WordPress plugin 1.1.8 is affected; patch s...
WordPress Awesome Shortcodes For Genesis Plugin 1.1.8 is vulnerable to Cross Site Request Forgery (CSRF)
Software Awesome Shortcodes For Genesis Type Plugin Vulnerable versions 1.1.8 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-51638 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 555acd2f113e Credits SOPROBRO...