WordPress WebinarIgnition plugin <= 3.05.8 - Cross Site Request Forgery (CSRF) vulnerability
CVE-2024-32445
8.8HIGH
What is CVE-2024-32445?
A Cross-Site Request Forgery (CSRF) vulnerability was identified in the Saleswonder WebinarIgnition plugin, affecting versions through 3.05.8. This security flaw allows an attacker to induce a victim to execute unwanted actions on a web application in which they are authenticated. This type of vulnerability can lead to unauthorized actions being taken on behalf of users without their consent, posing a significant risk to the integrity of the affected systems. Website owners using this plugin are encouraged to apply necessary updates or patches to mitigate potential security breaches.
Affected Version(s)
WebinarIgnition <= 3.05.8