CVE-2024-0768 | Envo Elementor Templates & Widgets for WooCommerce Plugin ajax_theme_activation cross-site request forgery

Posted by Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Envo Elementor Templates & Widgets for WooCommerce Plugin up to 1.4.4 on WordPress. This affects the function ajax_theme_activation. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2024-0768. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-0768 | Envo Elementor Templates & Widgets for WooCommerce Plugin ajax_theme_activation cross-site request forgery

Related Posts

CVE-2024-39426 | Adobe Acrobat Reader out-of-bounds (apsb24-57)

CVE-2024-35638 | JumpDEMAND ActiveDEMAND Plugin up to 0.2.43 on WordPress cross-site request forgery

CVE-2024-25111 | Squid Web Proxy up to 6.7.x HTTP Chunked Decoder recursion

CVE-2024-6575 | Plus Addons for Elementor Plugin up to 5.6.2 on WordPress TP Page Scroll Widget cross site scripting