CVSS 3.1 Score 5.4 of 10 (medium)


Published Apr 15, 2024
CWE ID 352


CVE-2024-32446 is a Cross-Site Request Forgery (CSRF) vulnerability found in the WP Swings Wallet System for WooCommerce. This vulnerability affects versions of Wallet System for WooCommerce from n/a through 2.5.9. The risk score for this vulnerability is 25, with a base severity of MEDIUM and a base score of 5.4. It requires user interaction and has a low integrity impact and no confidentiality impact. The exploitability score is 2.8, and it has a low attack complexity and availability impact. Organizations using this plugin should update to the latest version or apply the necessary patches to remediate this vulnerability to prevent potential unauthorized actions on their systems through forged requests.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-32446 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options