Lucene search
WPScanVULNRICHMENT:CVE-2024-2739HistoryApr 15, 2024 - 5:00 a.m.
CVE-2024-2739 Advance Search <= 1.1.6 - Shortcode Deletion via CSRF
2024-04-1505:00:05
WPScan
github.com
4
cve-2024-2739
advance search
wordpress plugin
csrf vulnerability
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
The Advanced Search WordPress plugin through 1.1.6 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
CNA Affected
[
{
"vendor": "Unknown",
"product": "Advanced Search",
"versions": [
{
"status": "affected",
"version": "0",
"versionType": "semver",
"lessThanOrEqual": "1.1.6"
}
],
"defaultStatus": "affected"
}
]Related
cvelist
cvelist
CVE-2024-2739 Advance Search <= 1.1.6 - Shortcode Deletion via CSRF
2024-04-15 05:00:05
wpexploit
wpexploit
Advance Search <= 1.1.6 - Shortcode Deletion via CSRF
2024-03-25 00:00:00
wpvulndb
wpvulndb
Advance Search <= 1.1.6 - Shortcode Deletion via CSRF
2024-03-25 00:00:00
cve
cve
CVE-2024-2739
2024-04-15 05:15:15
nvd
nvd
CVE-2024-2739
2024-04-15 05:15:15
wordfence
wordfence
AI Score
6.8
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-2739