CVE-2024-30421

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Mar 28, 2024

CWE ID 352

Summary

CVE-2024-30421 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Pixelite Events Manager. This issue allows malicious actors to manipulate user actions on affected websites, potentially leading to unintended data modifications or unauthorized actions. The CSRF flaw exists in all versions of Events Manager between n/a and 6.4.7.1. Users are advised to update to a patched version promptly to mitigate this security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vEO1sR
https://www.cve.org/CVERecord?id=CVE-2024-30421
https://nvd.nist.gov/vuln/detail/CVE-2024-30421

Back to Vulnerability Database

CVE-2024-30421

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations