CSRF Vulnerability in WordPress Meta Data and Taxonomies Filter (MDTF)
CVE-2024-30457

4.3MEDIUM

What is CVE-2024-30457?

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Realmag777 WordPress Meta Data and Taxonomies Filter (MDTF), affecting versions from n/a through 1.3.3.1. This security issue could allow an attacker to perform unauthorized actions on behalf of an authenticated user without their consent, potentially compromising the integrity of user data and the overall security of the website.

Affected Version(s)

WordPress Meta Data and Taxonomies Filter (MDTF) <= 1.3.3.1

References

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Dhabaleshwar Das (Patchstack Alliance)
.