CVE-2024-13718
CVE-2024-13718 concerns the WordPress plugin “Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later” (up to version 1.2.26). The vulnerability is a Cross-Site Request Forgery (CSRF) due to missing or incorrect nonce validation on multiple functions, enabling unauthenticated atta...