exploitDog

GHSA-2885-vc9p-8279

Опубликовано: 02 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf allows Cross Site Request Forgery.This issue affects Event Espresso 4 Decaf: from n/a through 5.0.28.decaf.

Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf allows Cross Site Request Forgery.This issue affects Event Espresso 4 Decaf: from n/a through 5.0.28.decaf.

Ссылки

EPSS

Процентиль: 4%

0.00022

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-56251

CVSS3: 4.3

nvd

8 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in Event Espresso Event Espresso 4 Decaf allows Cross Site Request Forgery.This issue affects Event Espresso 4 Decaf: from n/a through 5.0.28.decaf.

EPSS

Процентиль: 4%

0.00022

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352