CVE-2024-2113 | kstover Ninja Forms Contact Form Plugin up to 3.8.0 on WordPress nf_download_all_subs cross-site request forgery

Posted by Angelo Barbosa | Mar 29, 2024 | CVE

A vulnerability classified as problematic was found in kstover Ninja Forms Contact Form Plugin up to 3.8.0 on WordPress. This vulnerability affects the function nf_download_all_subs. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-2113. The attack can be initiated remotely. There is no exploit available.

CVE-2024-2113 | kstover Ninja Forms Contact Form Plugin up to 3.8.0 on WordPress nf_download_all_subs cross-site request forgery

Related Posts

CVE-2023-51488 | Automattic Crowdsignal Dashboard Plugin up to 3.0.11 on WordPress cross site scripting

CVE-2024-20719 | Adobe Commerce cross site scripting (apsb24-03)

CVE-2024-2658 | Flexera FlexNet Publisher uncontrolled search path

CVE-2021-47149 | Linux Kernel up to 5.12.8 fujitsu fmvj18x_get_hwinfo null pointer dereference