CVE-2024-13057 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allo…
High CVSS: 7.1

CVE-2024-13057

The Dyn Business Panel WordPress plugin through 1.0.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.
Vendor
Phycticio
Product
Dyn Business Panel
CWE
CWE-352
Yayın Tarihi
2025-01-27 06:15:23
Güncelleme
2025-05-07 19:06:50
Source Identifier
contact@wpscan.com
KEV Date Added
-

Kategoriler

CWE-352 Dyn Business Panel HIGH Phycticio 2025

Referanslar

https://wpscan.com/vulnerability/6f869a3d-1ac1-4d31-8fe5-9b9795b15b5b/ https://wpscan.com/vulnerability/6f869a3d-1ac1-4d31-8fe5-9b9795b15b5b/