CVE-2024-51638

Name of the Vulnerable Software and Affected Versions Awesome Shortcodes For Genesis versions 1.1.8 and earlier

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability that allows Stored XSS. This means an attacker could potentially trick a user into performing unintended actions on a web application, and also store malicious scripts that could be executed by other users. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For versions 1.1.8 and earlier, update the plugin to the latest version to safeguard your site. As a temporary workaround, consider restricting access to the plugin until a patch is available.