CVE-2024-2969 | backie WP-Eggdrop Plugin up to 0.1 on WordPress Setting wpegg_updateOptions cross-site request forgery

Posted by Angelo Barbosa | Mar 29, 2024 | CVE

A vulnerability, which was classified as problematic, was found in backie WP-Eggdrop Plugin up to 0.1 on WordPress. Affected is the function wpegg_updateOptions of the component Setting Handler. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-2969. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-2969 | backie WP-Eggdrop Plugin up to 0.1 on WordPress Setting wpegg_updateOptions cross-site request forgery

Related Posts

CVE-2024-27380 | Samsung Exynos 1330 slsi_set_delayed_wakeup_type heap-based overflow

CVE-2024-2743 | GitLab up to 17.1.6/17.2.4/17.3.1 authorization (Issue 451014)

CVE-2023-6747 | FooGallery Premium Plugin up to 2.3.3 on WordPress cross site scripting

CVE-2024-47010 | Ivanti Avalanche up to 6.4.4 path traversal