CVE-2026-24521

Severity CVSS v4.0:

Pending analysis

Type:

CWE-352 Cross-Site Request Forgery (CSRF)

Publication date:

23/01/2026

Last modified:

23/01/2026

Description

Cross-Site Request Forgery (CSRF) vulnerability in Timur Kamaev Kama Thumbnail kama-thumbnail allows Cross Site Request Forgery.This issue affects Kama Thumbnail: from n/a through

Impact

References to Advisories, Solutions, and Tools

https://patchstack.com/database/Wordpress/Plugin/kama-thumbnail/vulnerability/wordpress-kama-thumbnail-plugin-3-5-1-cross-site-request-forgery-csrf-vulnerability?_s_id=cve