CSRF Vulnerability in Essential Breadcrumbs Allows Stored XSS
CVE-2024-53778
What is CVE-2024-53778?
A Cross-Site Request Forgery (CSRF) vulnerability in the Essential Breadcrumbs plugin from Essential Marketer has been identified, allowing for potential Stored Cross-Site Scripting (XSS) attacks. This vulnerability can exploit users by manipulating their actions without their consent, particularly affecting versions of Essential Breadcrumbs from 'n/a' up to 1.1.1. Attackers could craft malicious requests that hijack user sessions, leading to unauthorized actions and potential data exposure. It is essential to apply necessary security patches to mitigate the risks associated with this vulnerability.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
Affected Version(s)
Essential Breadcrumbs <= 1.1.1
References
CVSS V3.1
Timeline
Vulnerability published
Vulnerability Reserved