cve/CVE-2024-6136.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio a8969e1323 Update CVE sources 2024-08-14 18:26

2024-08-14 18:26:11 +00:00

907 B

Raw Permalink Blame History

CVE-2024-6136

Description

The wp-cart-for-digital-products WordPress plugin before 8.5.6 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks

POC

Reference

https://wpscan.com/vulnerability/7d85cfe4-4878-4530-ba78-7cfe33f3a8d5/

Github

https://github.com/20142995/nuclei-templates

907 B Raw Permalink Blame History

CVE-2024-6136

Description

POC

Reference

Github

907 B

Raw Permalink Blame History