WordPress Photo Video Store plugin <= 21.07 - CSRF to Cross Site Scripting (XSS) vulnerability
CVE-2024-53782
7.1HIGH
What is CVE-2024-53782?
The CSRF vulnerability in CMSaccount's Photo Video Store allows malicious actors to exploit the application by tricking users into executing unwanted actions. This vulnerability can lead to the potential execution of Cross-Site Scripting (XSS) attacks, compromising user accounts and sensitive data. Affected versions include all prior to 21.07, highlighting essential mitigation measures for users to secure their installations.
Affected Version(s)
Photo Video Store <= 21.07