CVE-2024-32689

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Apr 18, 2024
CWE ID 862

Summary

CVE-2024-32689 is a newly discovered vulnerability affecting the GenialSouls WP Social Comments plugin. This issue involves a missing authorization check, allowing unauthenticated users to manipulate comments on affected WordPress sites. The vulnerability can be exploited to submit or modify comments, potentially leading to security risks and unintended content on the target website. The affected version range is from n/a to 1.7.3. It is strongly advised for users to upgrade to the latest, secure version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share