CVE-2024-13356 | mlfactory DSGVO All in one Plugin up to 4.6 on WordPress user_remove_form.php cross-site request forgery

Inserito da Angelo Barbosa | Feb 4, 2025 | CVE

A vulnerability has been found in mlfactory DSGVO All in one Plugin up to 4.6 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the file user_remove_form.php. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-13356. The attack can be launched remotely. There is no exploit available.

CVE-2024-13356 | mlfactory DSGVO All in one Plugin up to 4.6 on WordPress user_remove_form.php cross-site request forgery

Post correlati

CVE-2023-40702 | Ping Identity PingOne MFA Integration Kit up to 2.3.0 authentication spoofing

CVE-2024-0890 | hongmaple octopus 1.0 /system/dept/edit ancestors sql injection

CVE-2023-42883 | Apple macOS Image denial of service

CVE-2024-7572 | Ivanti Desktop and Server Management 2022.1 Service Update 1/2022.2 Service Update 3 File permission assignment