CVE-2024-3943 | WP To Do Plugin up to 1.3.0 on WordPress wptodo_addcomment cross-site request forgery

Posted by Angelo Barbosa | May 29, 2024 | CVE

A vulnerability classified as problematic has been found in WP To Do Plugin up to 1.3.0 on WordPress. This affects the function wptodo_addcomment. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-3943. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-3943 | WP To Do Plugin up to 1.3.0 on WordPress wptodo_addcomment cross-site request forgery

Related Posts

CVE-2024-38078 | Microsoft Windows 11 21H2/11 22H2/11 23H2 Xbox Wireless Adapter use after free

CVE-2024-30117 | HCL BigFix Platform up to 9.5.24/10.0.11/11.0.2 Dynamic Search uncontrolled search path (KB0116659)

CVE-2024-9696 | Rescue Shortcodes Plugin up to 2.8 on WordPress Shortcode cross site scripting

CVE-2024-5586 | Zoho ManageEngine ADAudit Plus up to 8120 Extranet Lockouts Report Option sql injection