CVE-2024-5034

Sažetak

The SULly WordPress plugin before 4.3.1 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

Reference

https://wpscan.com/vulnerability/31f3a3b5-07bf-4cb3-b358-8488808733e0/
https://wpscan.com/vulnerability/31f3a3b5-07bf-4cb3-b358-8488808733e0/

CVSS

Base:	8.8
Impact:	5.9
Exploitability:	2.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

02-05-2025 - 12:34

Objavljeno

13-07-2024 - 06:15