CVE-2024-1325 | Live Sales Notification for Woocommerce Plugin up to 3.4.3 on WordPress ajax_cancel_review cross-site request forgery

Inserito da Angelo Barbosa | Mar 20, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in Live Sales Notification for Woocommerce Plugin up to 3.4.3 on WordPress. Affected by this issue is the function ajax_cancel_review. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2024-1325. The attack may be launched remotely. There is no exploit available.

CVE-2024-1325 | Live Sales Notification for Woocommerce Plugin up to 3.4.3 on WordPress ajax_cancel_review cross-site request forgery

Post correlati

CVE-2023-6462 | SourceCodester User Registration and Login System 1.0 delete-user.php user cross site scripting

CVE-2021-4439 | Linux Kernel up to 5.14.14 isdn kcapi.c cmtp_add_connection array index

CVE-2024-3565 | Content Blocks Plugin up to 3.3.0 on WordPress Shortcode content_block cross site scripting

CVE-2024-45593 | NixOS nix up to 2.24.5 NAR path traversal (GHSA-h4vv-h3jq-v493)