CVE-2024-30456

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Mar 29, 2024
CWE ID 352

Summary

CVE-2024-30456 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the realmag777 WPCS plugin. This issue puts websites using versions from n/a through 1.2.0.1 at risk. A successful exploit allows an attacker to trick a user into performing unintended actions on the affected website, potentially leading to unauthorized data changes or other undesirable outcomes. Users are strongly encouraged to update to the latest version of realmag777 WPCS to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share