CVE-2024-1845
VikRentCar Car Rental Management System < 1.3.2 - Cross Site Request Forgery
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
11 jul 2024Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The VikRentCar Car Rental Management System WordPress plugin before 1.3.2 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Productos afectados
Unknown · VikRentCar Car Rental Management System