CVE-2024-37413

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jan 2, 2025
CWE ID 352

Summary

CVE-2024-37413 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Rara Theme Preschool and Kindergarten. This issue enables an attacker to submit malicious requests on behalf of an unsuspecting user, potentially leading to unauthorized actions. The Preschool and Kindergarten versions from n/a through 1.2.1 are reportedly impacted by this vulnerability. Successful exploitation could result in data manipulation or unintended changes to the affected user's account. Users are advised to update their themes to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share