Skip to main content
CVE-2024-31428 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme The Conference.2.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF The Conference
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-31427 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Marker.Io Marker.Io.Io : from n/a through 1.1.8. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-31426 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Data443 Inline Related Posts.3.1. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32437 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in impleCode eCommerce Product Catalog.3.28. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32436 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Codemenschen Gift Vouchers.4.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32435 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in perrinalexandre05 AffiEasy affieasy.1.4. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD VulDB
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32434 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Tyche Softwares Order Delivery Date for WooCommerce.20.2. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32433 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Themefic BEAF beaf-before-and-after-gallery.5.4. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD VulDB
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32141 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in libsyn Libsyn Publisher Hub libsyn-podcasting.4.4. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD VulDB
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32101 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Omnisend Email Marketing for WooCommerce by Omnisend omnisend-connect.14.3. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF WordPress
NVD VulDB
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32099 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in James Ward WP Mail Catcher.1.6. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32095 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in MultiParcels MultiParcels Shipping For WooCommerce.16.9. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32451 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in wpWax Legal Pages.4.2. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32450 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in MagePeople Team WpTravelly.6.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.2%
CVE-2024-32102 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Scott Kingsley Clark Crony Cronjob Manager.5.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32441 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Zoho Campaigns.0.7. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Zoho Campaigns
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32442 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Zoho Campaigns.0.7. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Zoho Campaigns
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32440 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Thomas Belser Asgaros Forum.8.0. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Asgaros Forum
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32439 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in SwitchWP WP Client Reports.0.22. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Wp Client Reports
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32438 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in cleverplugins.Com SEO Booster.8.9. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Seo Booster
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32094 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in ChurchThemes Church Content - Sermons, Events and More.6. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32090 MEDIUM PATCH This Month

Cross-Site Request Forgery (CSRF) vulnerability in andy_moyle Church Admin church-admin.0.27. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

CSRF
NVD VulDB
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32089 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Supsystic Digital Publications by Supsystic.7.7. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32088 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in SeedProd Coming Soon Page, Under Construction & Maintenance Mode by SeedProd.15.20. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32084 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Gold Plugins Before And After.9. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32448 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in VideoYield.Com Ads.Txt Admin.Txt Admin: from n/a through 1.3. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-32447 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in AWP Classifieds Team AWP Classifieds.3.1. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF
NVD
CVSS 3.1
4.3
EPSS
0.1%
CVE-2024-23561 MEDIUM This Month

HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability due to insufficient obfuscation of sensitive values. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Hcl Devops Deploy Hcl Launch
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2024-31219 MEDIUM This Month

Discourse-reactions is a plugin that allows user to add their reactions to the post. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure
NVD GitHub
CVSS 3.1
4.3
EPSS
0.4%
CVE-2024-3505 MEDIUM This Month

JFrog Artifactory Self-Hosted versions below 7.77.3, are vulnerable to sensitive information disclosure whereby a low-privileged authenticated user can read the proxy configuration. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Artifactory
NVD
CVSS 3.1
4.3
EPSS
0.4%
CVE-2024-26023 MEDIUM This Month

OS command injection vulnerability in BUFFALO wireless LAN routers allows a logged-in user to execute arbitrary OS commands. Rated medium severity (CVSS 4.2), this vulnerability is low attack complexity. No vendor patch available.

Command Injection Wsr 2533Dhp Firmware Wsr 2533Dhpl Firmware Wsr 2533Dhp2 Firmware Wsr A2533Dhp2 Firmware +3
NVD
CVSS 3.1
4.2
EPSS
0.5%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy