CVE-2024-6230

The ?????? ?????? ?????? WordPress plugin through 2.9.8 does not have CSRF check in place when resetting its form fields, which could allow attackers to make a logged in admin perform such action via a CSRF attack

CVSS

No CVSS.

References

Link	Resource
https://wpscan.com/vulnerability/311e3c15-0f58-4f3b-91f8-0c62c0eea55e/

Configurations

No configuration.

History

30 Jul 2024, 13:32

Type	Values Removed	Values Added
Summary		(es) ?????? ?????? ?????? El complemento de WordPress hasta la versión 2.9.8 no tiene activada la verificación CSRF al restablecer sus campos de formulario, lo que podría permitir a los atacantes hacer que un administrador que haya iniciado sesión realice dicha acción a través de un ataque CSRF.
Summary	(en) The پلاگین پرداخت دلخواه WordPress plugin through 2.9.8 does not have CSRF check in place when resetting its form fields, which could allow attackers to make a logged in admin perform such action via a CSRF attack	(en) The ?????? ?????? ?????? WordPress plugin through 2.9.8 does not have CSRF check in place when resetting its form fields, which could allow attackers to make a logged in admin perform such action via a CSRF attack

30 Jul 2024, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-30 06:15

Updated : 2024-07-30 13:32

NVD link : CVE-2024-6230

Mitre link : CVE-2024-6230

CVE.ORG link : CVE-2024-6230

JSON object : View

Products Affected

No product.

CWE

No CWE.

JSON object

Attach tags to CVE-2024-6230

Attach tags to `CVE-2024-6230`