exploitDog

GHSA-7635-mr68-26j6

Опубликовано: 25 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

The IP Based Login WordPress plugin before 2.4.1 does not have CSRF checks in some places, which could allow attackers to make logged in users delete all logs via a CSRF attack

The IP Based Login WordPress plugin before 2.4.1 does not have CSRF checks in some places, which could allow attackers to make logged in users delete all logs via a CSRF attack

Ссылки

EPSS

Процентиль: 13%

0.00044

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-13118

CVSS3: 4.3

nvd

11 месяцев назад

The IP Based Login WordPress plugin before 2.4.1 does not have CSRF checks in some places, which could allow attackers to make logged in users delete all logs via a CSRF attack

EPSS

Процентиль: 13%

0.00044

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352