The HTML Forms WordPress plugin before 1.3.34 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2024-07-31T06:00:04.014Z

Updated: 2024-08-01T17:41:48.337Z

Reserved: 2024-06-28T19:20:08.301Z

Link: CVE-2024-6412

cve-icon Vulnrichment

Updated: 2024-08-01T17:41:39.536Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-07-31T06:15:04.083

Modified: 2024-08-01T18:35:24.697

Link: CVE-2024-6412

cve-icon Redhat

No data.