Cross-Site Request Forgery (CSRF) vulnerability in AboZain,O7abeeb,UnitOne Custom Dashboard Widgets allows Cross-Site Scripting (XSS).This issue affects Custom Dashboard Widgets: from n/a through 1.3.1.
References
Configurations
Configuration 1 (hide)
|
History
13 Feb 2024, 00:57
Type | Values Removed | Values Added |
---|---|---|
References | () https://patchstack.com/database/vulnerability/custom-dashboard-widgets/wordpress-custom-dashboard-widgets-plugin-1-3-1-csrf-to-xss-vulnerability?_s_id=cve - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
First Time |
Custom Dashboard Widgets Project
Custom Dashboard Widgets Project custom Dashboard Widgets |
|
CPE | cpe:2.3:a:custom_dashboard_widgets_project:custom_dashboard_widgets:*:*:*:*:*:wordpress:*:* |
31 Jan 2024, 12:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-31 12:16
Updated : 2024-02-28 20:54
NVD link : CVE-2024-22290
Mitre link : CVE-2024-22290
CVE.ORG link : CVE-2024-22290
JSON object : View
Products Affected
custom_dashboard_widgets_project
- custom_dashboard_widgets
CWE
CWE-352
Cross-Site Request Forgery (CSRF)