CVE-2024-27948

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Feb 28, 2024
Updated: Feb 29, 2024
CWE ID 352

Summary

CVE-2024-27948 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Atahualpa theme for WordPress. Versions from n/a to 3.7.24 are susceptible to this issue. A successful exploit of this vulnerability allows an attacker to make unauthorized actions on the affected user's behalf, potentially leading to data theft or unintended modifications. It is crucial that users of these versions update to a secure version of Atahualpa as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share