Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvePatchstackCVE-2024-31301
HistoryApr 12, 2024 - 1:15 p.m.

CVE-2024-31301

2024-04-1213:15:18
CWE-352
Patchstack
web.nvd.nist.gov
31
themeisle
csrf vulnerability
multiple page generator plugin
nvd
cve-2024-31301
3.4.0

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

AI Score

9.2

Confidence

High

EPSS

0

Percentile

9.0%

JSON

Cross-Site Request Forgery (CSRF) vulnerability in Themeisle Multiple Page Generator Plugin – MPG.This issue affects Multiple Page Generator Plugin – MPG: from n/a through 3.4.0.

Affected configurations

Vulners
Node
themeislemultiple_page_generatorRange3.4.0wordpress
VendorProductVersionCPE
themeislemultiple_page_generator*cpe:2.3:a:themeisle:multiple_page_generator:*:*:*:*:*:wordpress:*:*

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "multiple-pages-generator-by-porthas",
    "product": "Multiple Page Generator Plugin – MPG",
    "vendor": "Themeisle",
    "versions": [
      {
        "changes": [
          {
            "at": "3.4.1",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "3.4.0",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Related

nvd 1
wpvulndb 1
cvelist 1
vulnrichment 1
wordfence 1
nvd
nvd
CVE-2024-31301
2024-04-12 13:15:18
wpvulndb
wpvulndb
Multiple Page Generator Plugin – MPG < 3.4.1 - Cross-Site Request Forgery
2024-04-11 00:00:00
cvelist
cvelist
CVE-2024-31301 WordPress Multiple Page Generator Plugin – MPG plugin <= 3.4.0 - Cross Site Request Forgery (CSRF) vulnerability
2024-04-12 12:32:01
vulnrichment
vulnrichment
CVE-2024-31301 WordPress Multiple Page Generator Plugin – MPG plugin <= 3.4.0 - Cross Site Request Forgery (CSRF) vulnerability
2024-04-12 12:32:01
wordfence
wordfence
Wordfence Intelligence Weekly WordPress Vulnerability Report (April 1, 2024 to April 7, 2024)
2024-04-11 17:23:36

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

AI Score

9.2

Confidence

High

EPSS

0

Percentile

9.0%

JSON
Related for CVE-2024-31301
nvd1wpvulndb1cvelist1vulnrichment1wordfence1