exploitDog

GHSA-fx7g-h676-75c4

Опубликовано: 30 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

The Bulk Me Now! WordPress plugin through 2.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks.

The Bulk Me Now! WordPress plugin through 2.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks.

Ссылки

EPSS

Процентиль: 14%

0.00045

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352

Связанные уязвимости

CVE-2024-12709

CVSS3: 4.3

nvd

около 1 года назад

The Bulk Me Now! WordPress plugin through 2.0 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks.

EPSS

Процентиль: 14%

0.00045

Низкий

4.3 Medium

CVSS3

CVE ID

Дефекты

CWE-352