CVE-2024-8047

The Visual Sound old WordPress plugin through 1.06 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...

PT-2024-38773 · WordPress · Visual Sound

Name of the Vulnerable Software and Affected Versions: The Visual Sound old WordPress plugin versions 1.06 and earlier Description: The issue is related to the lack of a CSRF check when updating settings in the plugin, which could allow attackers to make a logged-in admin change them via a CSRF...

WordPress plugin Visual Sound 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...

PT-2024-38636 · WordPress · The Visual Sound

Name of the Vulnerable Software and Affected Versions: The Visual Sound WordPress plugin versions 1.03 and earlier Description: The issue is related to the lack of a CSRF check when updating settings in the plugin, which could allow attackers to make a logged-in admin change them via a CSRF attac...

WordPress Visual Sound (old) Plugin <= 1.06 is vulnerable to Cross Site Request Forgery (CSRF)

Software Visual Sound old Type Plugin Vulnerable versions = 1.06 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-8047 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d48c153c5f25 Credits Daniel Ruf Required...

CVE-2024-8197

CVE-2024-8197 is a reserved/duplicate entry that maps to CVE-2024-7859. Connected sources confirm CVE-2024-7859 affects the Visual Sound WordPress plugin (versions up to 1.03) by lacking CSRF protection when updating settings, potentially allowing a logged-in admin to change settings via CSRF. No...