CVE-2024-12605 | opacewebdesign AI Scribe Plugin up to 2.3 on WordPress cross-site request forgery

Inserito da Angelo Barbosa | Gen 9, 2025 | CVE

A vulnerability classified as problematic was found in opacewebdesign AI Scribe Plugin up to 2.3 on WordPress. This vulnerability affects the function al_scribe_engine_request_data/al_scribe_content_data. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-12605. The attack can be initiated remotely. There is no exploit available.

CVE-2024-12605 | opacewebdesign AI Scribe Plugin up to 2.3 on WordPress cross-site request forgery

Post correlati

CVE-2024-48509 | Learning with Texts 2.0.3 URL Parameter sql injection

CVE-2024-6929 | Dynamic Featured Image Plugin up to 3.7.0 on WordPress dfiFeatured cross site scripting

CVE-2024-28054 | Amavis up to 2.12.2/2.13.0 MIME-tools access control (Issue 112)

CVE-2024-24431 | Open5GS 2.7.0 EMM Message ogs_nas_emm_decode denial of service