CVE-2023-41686

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 13, 2024
CWE ID 352

Summary

CVE-2023-41686 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the ilGhera Woocommerce Support System. An attacker can exploit this issue to execute malicious actions on behalf of an unsuspecting user, by tricking them into visiting a specially crafted website. This affects Woocommerce Support System versions from n/a through 1.2.2. Successful exploitation could lead to unauthorized modifications or data access, posing a significant risk to the security of affected systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share