Cross-Site Request Forgery (CSRF) vulnerability in Forum One WP-CFM wp-cfm.This issue affects WP-CFM: from n/a through 1.7.8.
References
Configurations
History
15 Feb 2024, 02:09
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.3 |
First Time |
Forumone
Forumone wp-cfm |
|
CPE | cpe:2.3:a:forumone:wp-cfm:*:*:*:*:*:wordpress:*:* | |
References | () https://github.com/forumone/wp-cfm/security/advisories/GHSA-2449-jmfc-gc7f - Vendor Advisory | |
References | () https://patchstack.com/database/vulnerability/wp-cfm/wordpress-wp-cfm-plugin-1-7-8-cross-site-request-forgery-csrf-vulnerability?_s_id=cve - Third Party Advisory |
07 Feb 2024, 17:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-02-07 17:15
Updated : 2024-02-28 20:54
NVD link : CVE-2024-24706
Mitre link : CVE-2024-24706
CVE.ORG link : CVE-2024-24706
JSON object : View
Products Affected
forumone
- wp-cfm
CWE
CWE-352
Cross-Site Request Forgery (CSRF)