CVE-2024-13774 | wpcodefactory Wishlist for WooCommerce Plugin up to 3.1.7 on WordPress Setting save_to_multiple_wishlist cross-site request forgery

Inserito da Angelo Barbosa | Mar 8, 2025 | CVE

A vulnerability classified as problematic has been found in wpcodefactory Wishlist for WooCommerce Plugin up to 3.1.7 on WordPress. Affected is the function save_to_multiple_wishlist of the component Setting Handler. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-13774. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-13774 | wpcodefactory Wishlist for WooCommerce Plugin up to 3.1.7 on WordPress Setting save_to_multiple_wishlist cross-site request forgery

Post correlati

CVE-2024-28183 | Espressif ESP-IDF up to 4.4.6/5.0.6/5.1.3/5.2.0 Anti-Rollback Protection toctou (GHSA-22×6-3756-pfp8)

CVE-2024-13041 | GitLab Community Edition/Enterprise Edition up to 17.5.4/17.6.2/17.7.0 incorrect user management

CVE-2024-24445 | OpenAirInterface oai-cn5g-amf up to 2.0.0 NGAP Protocol Message null pointer dereference

CVE-2023-51303 | PHPJabbers Event Ticketing System 1.0 cross site scripting