Lucene search
JpcertVULNRICHMENT:CVE-2024-38345HistoryJul 04, 2024 - 12:19 a.m.
CVE-2024-38345
2024-07-0400:19:15
jpcert
github.com
5
vulnerability
unauthorized access
wordpress
A cross-site request forgery vulnerability exists in Sola Testimonials versions prior to 3.0.0. If this vulnerability is exploited, an attacker allows a user who logs in to the WordPress site where the affected plugin is enabled to access a malicious page. As a result, the user may perform unintended operations on the WordPress site.
CNA Affected
[
{
"vendor": "Sola Plugins",
"product": "Sola Testimonials",
"versions": [
{
"status": "affected",
"version": "versions prior to 3.0.0"
}
]
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:a:solaplugins:sola_testimonials:*:*:*:*:*:*:*:*"
],
"vendor": "solaplugins",
"product": "sola_testimonials",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "3.0.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]Related
nvd
nvd
CVE-2024-38345
2024-07-04 01:15:02
cve
cve
CVE-2024-38345
2024-07-04 01:15:02
cvelist
cvelist
CVE-2024-38345
2024-07-04 00:19:15
jvn
jvn
wordfence
wordfence
AI Score
6.8
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-38345