CVE-2024-32693

Name of the Vulnerable Software and Affected Versions ValvePress Automatic versions prior to 3.93.0

Description The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability. This vulnerability is due to incorrect validation of the nonce value, which can allow a remote attacker to perform a CSRF attack.

Recommendations For versions prior to 3.93.0, update to version 3.93.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive functions that may be exploited through CSRF attacks until the update is applied.