CVE-2024-37431

CVE-2024-37431 describes a CSRF vulnerability in the WordPress theme Mesmerize, affecting versions up to 1.6.120 (listed as up to 1.6.120). Connected sources corroborate a Cross-Site Forgery issue in Mesmerize (to cache clearing) and note that a patch exists (the CVE record is marked as Patched) ...

WordPress plugin Mesmerize 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...

WordPress Mesmerize Theme <= 1.6.120 is vulnerable to Cross Site Request Forgery (CSRF)

Software Mesmerize Type Theme Vulnerable versions = 1.6.120 Fixed in 1.6.124 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-37431 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID c60ba7d94aaa Credits Dhabaleshwar Das...