CVE-2024-32689
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Apr 18, 2024
CWE ID 862
Summary
CVE-2024-32689 is a newly discovered vulnerability affecting the GenialSouls WP Social Comments plugin. This issue involves a missing authorization check, allowing unauthenticated users to manipulate comments on affected WordPress sites. The vulnerability can be exploited to submit or modify comments, potentially leading to security risks and unintended content on the target website. The affected version range is from n/a to 1.7.3. It is strongly advised for users to upgrade to the latest, secure version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share