CVE-2024-0513 | Royal Elementor Addons and Templates Plugin up to 1.3.87 on WordPress remove_from_wishlist cross-site request forgery

Inserito da Angelo Barbosa | Feb 7, 2024 | CVE

A vulnerability was found in Royal Elementor Addons and Templates Plugin up to 1.3.87 on WordPress. It has been classified as problematic. Affected is the function remove_from_wishlist. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-0513. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-0513 | Royal Elementor Addons and Templates Plugin up to 1.3.87 on WordPress remove_from_wishlist cross-site request forgery

Post correlati

CVE-2023-49077 | Mailcow prior 2023-11 Quarantine UI cross site scripting (GHSA-46×4-w2fm-5x6g)

CVE-2024-43240 | azzaroco Ultimate Membership Pro Plugin up to 12.6 on WordPress privileges management

CVE-2024-8522 | LearnPress Plugin up to 4.2.7 on WordPress c_only_fields sql injection

CVE-2024-0905 | Fancy Product Designer Plugin up to 6.1.7 on WordPress cross site scripting