CVE-2024-32084

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Apr 15, 2024

CWE ID 352

Summary

CVE-2024-32084 represents a Cross-Site Request Forgery (CSRF) vulnerability found in Gold Plugins' Before And After software. Affecting versions from n/a to 3.9, this issue enables unauthorized users to submit malicious requests on behalf of other users, potentially leading to unintended actions within their accounts. This security flaw can pose risks such as data manipulation or unauthorized administrative functions. To mitigate these risks, users of Before And After should update their software to a patched version as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vU0p6j
https://www.cve.org/CVERecord?id=CVE-2024-32084
https://nvd.nist.gov/vuln/detail/CVE-2024-32084

Back to Vulnerability Database

CVE-2024-32084

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations