CVE-2024-35684

Cross-Site Request Forgery (CSRF) vulnerability in 10up ElasticPress.This issue affects ElasticPress: from n/a through 5.1.1.
Configurations

Configuration 1 (hide)

cpe:2.3:a:10up:elasticpress:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 09:20

Type Values Removed Values Added
References () https://patchstack.com/database/vulnerability/elasticpress/wordpress-elasticpress-plugin-5-1-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve - Third Party Advisory () https://patchstack.com/database/vulnerability/elasticpress/wordpress-elasticpress-plugin-5-1-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve - Third Party Advisory

18 Jul 2024, 19:15

Type Values Removed Values Added
CPE cpe:2.3:a:10up:elasticpress:*:*:*:*:*:wordpress:*:*
First Time 10up elasticpress
10up
References () https://patchstack.com/database/vulnerability/elasticpress/wordpress-elasticpress-plugin-5-1-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/elasticpress/wordpress-elasticpress-plugin-5-1-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve - Third Party Advisory

11 Jun 2024, 16:15

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de Cross-Site Request Forgery (CSRF) en 10up ElasticPress. Este problema afecta a ElasticPress: desde n/a hasta 5.1.0.
Summary (en) Cross-Site Request Forgery (CSRF) vulnerability in 10up ElasticPress.This issue affects ElasticPress: from n/a through 5.1.0. (en) Cross-Site Request Forgery (CSRF) vulnerability in 10up ElasticPress.This issue affects ElasticPress: from n/a through 5.1.1.

08 Jun 2024, 15:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-08 15:15

Updated : 2024-11-21 09:20


NVD link : CVE-2024-35684

Mitre link : CVE-2024-35684

CVE.ORG link : CVE-2024-35684


JSON object : View

Products Affected

10up

  • elasticpress
CWE
CWE-352

Cross-Site Request Forgery (CSRF)