CVE-2024-53716
CVSS 3.1 Score 7.1 of 10 (high)
Details
Summary
CVE-2024-53716 is a newly discovered vulnerability affecting the wp auto top plugin. This issue is classified as a Cross-Site Request Forgery (CSRF) vulnerability that also includes Stored XSS (Cross-Site Scripting) capabilities. Hackers can exploit this flaw to inject malicious scripts into unsuspecting users' browsers, potentially leading to information disclosure or session hijacking. The vulnerability affects wp auto top versions from n/a to 2.9.3. Users are advised to update their plugins to the latest patched version as soon as possible to protect against these attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- WordPress