CVE-2024-8050

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

15/05/2025

Last modified:

16/05/2025

Description

The Custom Author Base WordPress plugin through 1.1.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Impact

References to Advisories, Solutions, and Tools

https://wpscan.com/vulnerability/28c9c127-464a-4750-8b62-a9b90b01f1af/