admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 01:31:20 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-108xx/CVE-2024-10892.json
cad-safe-bot 90307445be Auto-Update: 2024-12-22T03:00:24.601826+00:00
2024-12-22 03:03:49 +00:00

48 lines
1.7 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-10892",
"sourceIdentifier": "contact@wpscan.com",
"published": "2024-12-18T06:15:21.567",
"lastModified": "2024-12-18T15:15:08.067",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The Cost Calculator Builder WordPress plugin before 3.2.43 does not have CSRF checks in some AJAX actions, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks."
},
{
"lang": "es",
"value": "El complemento Cost Calculator Builder de WordPress anterior a la versi\u00f3n 3.2.43 no tiene comprobaciones CSRF en algunas acciones AJAX, lo que podr\u00eda permitir a los atacantes hacer que los usuarios registrados realicen acciones no deseadas a trav\u00e9s de ataques CSRF."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "REQUIRED",
"scope": "UNCHANGED",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 2.8,
"impactScore": 2.5
}
]
},
"references": [
{
"url": "https://wpscan.com/vulnerability/ff1f5b84-a8cf-4574-a713-53d35739c6cb/",
"source": "contact@wpscan.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink