Lucene search
PatchstackCVE-2024-32693HistoryApr 22, 2024 - 8:15 a.m.
CVE-2024-32693
2024-04-2208:15:38
CWE-352
Patchstack
web.nvd.nist.gov
44
csrf
valvepress automatic
security vulnerability
version 3.93.0
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in ValvePress Automatic.This issue affects Automatic: from n/a before 3.93.0.
Affected configurations
Node
valvepresswordpress_automatic_pluginRange<3.93.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| valvepress | wordpress_automatic_plugin | * | cpe:2.3:a:valvepress:wordpress_automatic_plugin:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Automatic",
"vendor": "ValvePress",
"versions": [
{
"changes": [
{
"at": "3.93.0",
"status": "unaffected"
}
],
"lessThan": "3.93.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
WordPress Automatic Plugin < 3.93.0 Cross-Site Request Forgery
2024-04-24 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-32693
2024-04-22 08:15:38
wordfence
wordfence
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L
AI Score
6.9
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-32693