CVE-2024-38344: A cross-site request forgery vulnerability exists in WP Tweet Walls versions prior to 1.0.4. If this vulnerability is exploited, an attacker allows...

0.0 CVSS

Description

A cross-site request forgery vulnerability exists in WP Tweet Walls versions prior to 1.0.4. If this vulnerability is exploited, an attacker allows a user who logs in to the WordPress site where the affected plugin is enabled to access a malicious page. As a result, the user may perform unintended operations on the WordPress site.

Classification

CVE ID: CVE-2024-38344

CVSS Base Severity: LOW

CVSS Base Score: 0.0

Affected Products

Vendor: Sola Plugins

Product: WP Tweet Walls

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.44% (scored less or equal to compared to others)

EPSS Date: 2025-02-03 (when was this score calculated)

References

https://wordpress.org/plugins/wp-tweet-walls/
https://jvn.jp/en/jp/JVN34977158/

Timeline

2024-12-07 00:31:12 UTC
CVE

A cross-site request forgery vulnerability exists in WP Tweet Walls versions prior to 1.0.4. If this vulnerability is exploited, an attacker allows...