CVE-2024-5081

NVD Published Date: August 05, 2024 at 06:16 AM
NVD Last Modified: August 05, 2024 at 03:35 PM
Download Patch
Vulnerability ID
CVE-2024-5081
Severity
None
Severity Score
None
Summary
The wp-eMember WordPress plugin before v10.7.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack
Mitigation and Patches
-
Exploits
-
Metasploit Payload
-
Vector
None
CWE ID
None

Recent Publish

CVE-2024-6498

CVE-2024-2232

CVE-2024-3636

CVE-2024-42447

CVE-2024-38856

CVE-2024-40096

See SecOps Solution
in action

Schedule Demo