CVE-2024-32947
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Summary
CVE-2024-32947 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the WP ADA Compliance Check Basic software from AlumniOnline Web Services LLC. This issue allows an attacker to submit unauthorized requests on behalf of a user who is currently authenticated on a vulnerable website. The vulnerability can be exploited to perform actions that the user is authorized to do, such as modifying account settings or making unintended transactions. The impacted versions of WP ADA Compliance Check Basic are from n/a to 3.1.3. Users are advised to update to the latest version as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.