CSRF Vulnerability Affects PressCustomizr's Customizr
CVE-2024-35771
8.8HIGH
What is CVE-2024-35771?
A Cross-Site Request Forgery (CSRF) vulnerability exists in the Customizr theme by PressCustomizr, impacting versions from n/a through 4.4.21. This vulnerability enables an attacker to trick a logged-in user into submitting unwanted requests, potentially compromising the integrity of the web application and allowing the execution of unauthorized actions on behalf of the user without their consent. It is essential for administrators and users to ensure their Customizr theme is updated to mitigate this risk.
Affected Version(s)
Customizr <= 4.4.21