CVE-2024-11842 Information

Dec 28, 2024 cve

Description

The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in place when updating its settings which could allow attackers to make a logged in admin change them via a CSRF attack

Reference

https://wpscan.com/vulnerability/2545f054-b6ca-4ee5-ac6f-f42193db21b1/ https://wpscan.com/vulnerability/2545f054-b6ca-4ee5-ac6f-f42193db21b1/

Share on: