PT-2023-30116 · Webdorado · Wdsocialwidgets

Lee Se Hyoung

·

Publicado

2023-11-13

·

Atualizado

2023-11-17

·

CVE-2023-46619

CVSS v3.1

8.8

Alta

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions WebDorado WDSocialWidgets plugin versions prior to 1.0.16
Description The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web application that the user is authenticated to.
Recommendations For versions prior to 1.0.16, update to version 1.0.16 or later to resolve the issue.

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-352

Identificadores relacionados

CVE-2023-46619

Produtos afetados

Wdsocialwidgets