CVE-2024-31936 | AyeCode UsersWP Plugin up to 1.2.5 on WordPress cross-site request forgery

Posted by Angelo Barbosa | Apr 11, 2024 | CVE

A vulnerability classified as problematic has been found in AyeCode UsersWP Plugin up to 1.2.5 on WordPress. Affected is an unknown function. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2024-31936. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31936 | AyeCode UsersWP Plugin up to 1.2.5 on WordPress cross-site request forgery

Related Posts

CVE-2024-31139 | JetBrains TeamCity prior 2024.03 Maven Build Steps Detector xml external entity reference

CVE-2024-42056 | Retool up to 3.40.0 /api/resources information disclosure

CVE-2024-27135 | Apache Pulsar up to 2.10.5/2.11.3/3.0.2/3.1.2/3.2.0 Function Worker dynamically-managed code resources

CVE-2023-44294 | Dell Secure Connect Gateway-Application up to 5.18.00.00 Collection REST API sql injection (dsa-2023-403)