CVE-2024-0432 | Gestpay for WooCommerce Plugin up to 20221130 on WordPress ajax_delete_card cross-site request forgery

Posted by Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability classified as problematic has been found in Gestpay for WooCommerce Plugin up to 20221130 on WordPress. This affects the function ajax_delete_card. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-0432. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-0432 | Gestpay for WooCommerce Plugin up to 20221130 on WordPress ajax_delete_card cross-site request forgery

Related Posts

CVE-2023-5404 | Honeywell Experion Server heap-based overflow

CVE-2023-49955 | Dalmann OCPP.Core up to 1.1.x Open Charge Point Protocol chargePointVendor denial of service (Issue 32)

CVE-2024-27154 | Toshiba Tec e-Studio Multi-Function Peripheral log file

CVE-2024-37681 | Shanxi Internet Chuangxiang Technology Background Management System 1.0.1 index.html denial of service