Lucene search
WpvulndbWPVDB-ID:760F5CAD-DEFB-48BD-AE29-1A5752FE9BA6HistoryJan 31, 2024 - 12:00 a.m.
Active Products Tables for WooCommerce. Professional products tables for WooCommerce store < 1.0.6.2 - Cross-Site Request Forgery
2024-01-3100:00:00
wpscan.com
4
woocommerce
plugin vulnerability
cross-site request forgery
Description The Active Products Tables for WooCommerce. Professional products tables for WooCommerce store plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.6.1. This is due to missing or incorrect nonce validation on several functions corresponding to AJAX actions. This makes it possible for unauthenticated attackers to invoke those functions via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
| CPE | Name | Operator | Version |
|---|---|---|---|
| eq | 1.0.6.2 |
Related
cvelist
cvelist
CVE-2024-0796
2024-02-05 21:21:43
prion
prion
Cross site request forgery (csrf)
2024-02-05 22:16:00
cve
cve
CVE-2024-0796
2024-02-05 22:16:05
wordfence
wordfence
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
20.2%
Related for WPVDB-ID:760F5CAD-DEFB-48BD-AE29-1A5752FE9BA6