CVE-2024-8082

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

15/05/2025

Last modified:

16/05/2025

Description

The Widgets Reset WordPress plugin through 0.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

Impact

References to Advisories, Solutions, and Tools

https://wpscan.com/vulnerability/47b2cd60-9ac4-49cf-8ca9-7d90656fc397/