Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:DE5AB0FF-E38B-466A-A70C-C7D369F5C5C7
HistoryFeb 23, 2023 - 12:00 a.m.

Organization chart < 1.4.5 - Multiple CSRF

2023-02-2300:00:00
wpscan.com
5
organization chart
csrf
attackers
logged in users
plugin

0.001 Low

EPSS

Percentile

27.7%

JSON

The plugin does not have CSRF checks in some places, for example when updating/deleting/duplicating popups, tree and themes from the plugin, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

CPENameOperatorVersion
organization-chartlt1.4.5

Related

nvd 1
cvelist 1
prion 1
cve 1
nvd
nvd
CVE-2023-24384
2023-02-23 15:15:11
cvelist
cvelist
CVE-2023-24384 WordPress Organization chart Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF)
2023-02-23 14:55:17
prion
prion
Cross site request forgery (csrf)
2023-02-23 15:15:00
cve
cve
CVE-2023-24384
2023-02-23 15:15:11

0.001 Low

EPSS

Percentile

27.7%

JSON
Related for WPVDB-ID:DE5AB0FF-E38B-466A-A70C-C7D369F5C5C7
nvd1cvelist1prion1cve1