CVE-2024-1978 | Friends Plugin up to 2.8.5 on WordPress server-side request forgery

Posted by Angelo Barbosa | Feb 28, 2024 | CVE

A vulnerability, which was classified as critical, has been found in Friends Plugin up to 2.8.5 on WordPress. Affected by this issue is some unknown functionality. The manipulation leads to server-side request forgery.

This vulnerability is handled as CVE-2024-1978. The attack needs to be done within the local network. There is no exploit available.

CVE-2024-1978 | Friends Plugin up to 2.8.5 on WordPress server-side request forgery

Related Posts

CVE-2024-34095 | Adobe Acrobat Reader up to 20.005.30574/24.002.20736 use after free (apsb24-29)

CVE-2023-5679 | ISC BIND DNS64 assertion

CVE-2023-52308 | Paddle up to 2.5.x divide by zero (pdsa-2023-017)

CVE-2024-8708 | SourceCodester Best House Rental Management System 1.0 categories.php cross site scripting