5 matches found
CVE-2024-51653
Cross-Site Request Forgery CSRF vulnerability in akira1891 UPDATE NOTIFICATIONS update-notifications allows Stored XSS.This issue affects UPDATE NOTIFICATIONS: from n/a through = 0.3.4...
CVE-2024-51653
creationtimestamp| type| source ---|---|--- 2024-11-19 20:07:37+00:00| seen| https://infosec.exchange/users/cve/statuses/113511422815143195...
CVE-2024-51653
Cross-Site Request Forgery CSRF vulnerability in akira1891 UPDATE NOTIFICATIONS update-notifications allows Stored XSS.This issue affects UPDATE NOTIFICATIONS: from n/a through = 0.3.4...
CVE-2024-51653
CVE-2024-51653 documents a CSRF to Stored XSS vulnerability in the WordPress plugin UPDATE NOTIFICATIONS affecting versions
WordPress UPDATE NOTIFICATIONS Plugin <= 0.3.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software UPDATE NOTIFICATIONS Type Plugin Vulnerable versions = 0.3.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-51653 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 0600c62df7fe Credits SOPROBRO Require...