Lucene search
WPScanVULNRICHMENT:CVE-2024-3940HistoryMay 10, 2024 - 6:00 a.m.
CVE-2024-3940 reCAPTCHA Jetpack <= 0.2.2 - Settings Update via CSRF
2024-05-1006:00:02
WPScan
github.com
cve-2024-3940
recaptcha jetpack
wordpress plugin
csrf vulnerability
settings update
admin
The reCAPTCHA Jetpack WordPress plugin through 0.2.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
CNA Affected
[
{
"vendor": "Unknown",
"product": "reCAPTCHA Jetpack",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThanOrEqual": "0.2.2"
}
],
"defaultStatus": "affected"
}
]Related
cve
cve
CVE-2024-3940
2024-05-14 15:42:36
nvd
nvd
CVE-2024-3940
2024-05-14 15:42:36
wpvulndb
wpvulndb
reCAPTCHA Jetpack <= 0.2.2 - Settings Update via CSRF
2024-04-19 00:00:00
wpexploit
wpexploit
reCAPTCHA Jetpack <= 0.2.2 - Settings Update via CSRF
2024-04-19 00:00:00
cvelist
cvelist
CVE-2024-3940 reCAPTCHA Jetpack <= 0.2.2 - Settings Update via CSRF
2024-05-10 06:00:02
wordfence
wordfence
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for VULNRICHMENT:CVE-2024-3940