CVE-2024-0432 | Gestpay for WooCommerce Plugin up to 20221130 on WordPress ajax_delete_card cross-site request forgery

Posted by Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability classified as problematic has been found in Gestpay for WooCommerce Plugin up to 20221130 on WordPress. This affects the function ajax_delete_card. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-0432. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-0432 | Gestpay for WooCommerce Plugin up to 20221130 on WordPress ajax_delete_card cross-site request forgery

Related Posts

CVE-2024-0230 | Apple Magic Keyboard prior 2.0.6 Bluetooth Pairing user session

CVE-2024-9653 | Restaurant Menu Plugin up to 2.4.2 on WordPress cross site scripting

CVE-2023-51800 | School Fees Management System 1.0 main_settings add_new_parent cross site scripting

CVE-2024-42275 | Linux Kernel up to 6.10.3 drm_client_buffer_vmap_local uninitialized pointer (c0f412961653/b5fbf924f125)