How severe is CVE-2024-4758?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.6 out of 10.

What type of vulnerability is CVE-2024-4758?

This is classified as CWE-352, which is a common weakness in software security.

CVE-2024-4758

HIGH Year: 2024

CVSS v3 Score

7.6

High

Weakness Type

CWE-352

View all →

Vulnerability Description

The Muslim Prayer Time BD WordPress plugin through 2.4 does not have CSRF check in place when reseting its settings, which could allow attackers to make a logged in admin reset them via a CSRF attack

CVE-2017-5165

HIGH

CVSS:7.6(High)

An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. There is no CSRF Token generated per page and/or per (sensitive) function. Successful exploitation of this vul...

CWE-3522017

CVE-2019-3718

HIGH

CVSS:7.6(High)

Dell SupportAssist Client versions prior to 3.2.0.90 contain an improper origin validation vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to attempt CSR...

CWE-3522019

CVE-2020-15135

HIGH

CVSS:7.6(High)

save-server (npm package) before version 1.05 is affected by a CSRF vulnerability, as there is no CSRF mitigation (Tokens etc.). The fix introduced in version version 1.05 unintentionally breaks uploa...

CWE-3522020

CVE-2020-7304

HIGH

CVSS:7.6(High)

Cross site request forgery vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote attacker to embed a CRSF script via adding a new label.

CWE-3522020