CVE-2023-45638

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 16, 2023
Updated: Oct 18, 2023
CWE ID 352

Summary

CVE-2023-45638 is a Cross-Site Request Forgery (CSRF) vulnerability affecting versions 3.1.9 and below of the euPago Eupago Gateway For Woocommerce plugin. A successful exploit could allow an attacker to manipulate a user's session, leading to unintended actions such as unauthorized transactions or data modifications within the plugin. Users are advised to update the plugin to a secure version as soon as possible to mitigate this risk. This vulnerability highlights the importance of keeping WordPress plugins up-to-date to protect against potential security threats.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share