PT-2024-20604 · Frédéric Gilles · Fg Prestashop To Woocommerce+2
Friday
·
Published
2024-02-21
·
Updated
2024-02-22
·
CVE-2024-24837
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
Frédéric GILLES FG PrestaShop to WooCommerce versions 4.44.3 and earlier
Frédéric GILLES FG Drupal to WordPress versions 3.67.0 and earlier
Frédéric GILLES FG Joomla to WordPress versions 4.15.0 and earlier
Description
The issue is a Cross-Site Request Forgery (CSRF) vulnerability. It affects several products from Frédéric GILLES, including FG PrestaShop to WooCommerce, FG Drupal to WordPress, and FG Joomla to WordPress.
Recommendations
For FG PrestaShop to WooCommerce versions 4.44.3 and earlier, update to a version later than 4.44.3.
For FG Drupal to WordPress versions 3.67.0 and earlier, update to a version later than 3.67.0.
For FG Joomla to WordPress versions 4.15.0 and earlier, update to a version later than 4.15.0.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Fg Drupal To Wordpress
Fg Joomla To Wordpress
Fg Prestashop To Woocommerce