CVE-2024-12280 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The WP Customer Area WordPress plugin through 8.2.4 does not have CSRF check in place when deleting its logs, which could allow attackers to make a logged in to…
Medium CVSS: 4.3

CVE-2024-12280

The WP Customer Area WordPress plugin through 8.2.4 does not have CSRF check in place when deleting its logs, which could allow attackers to make a logged in to delete them via a CSRF attack
Vendor
Marvinlabs
Product
Wp Customer Area
CWE
CWE-352
Yayın Tarihi
2025-01-27 06:15:21
Güncelleme
2025-05-08 18:42:33
Source Identifier
contact@wpscan.com
KEV Date Added
-

Kategoriler

CWE-352 Wp Customer Area MEDIUM Marvinlabs 2025

Referanslar

https://wpscan.com/vulnerability/2b32c0b8-28bb-4220-800b-4c369bca91c5/ https://wpscan.com/vulnerability/2b32c0b8-28bb-4220-800b-4c369bca91c5/