CVE-2024-32438

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Apr 15, 2024

CWE ID 352

Summary

CVE-2024-32438 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the SEO Booster plugin for cleverplugins.com. This issue, which impacts versions from n/a through 3.8.9, allows malicious actors to manipulate users' actions on the affected website by tricking them into making unwanted requests, potentially leading to unintended data modification or unauthorized actions. The CSRF flaw poses a significant threat to websites utilizing the vulnerable SEO Booster plugin, necessitating immediate attention and patch application to mitigate potential risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vWh5GQ
https://www.cve.org/CVERecord?id=CVE-2024-32438
https://nvd.nist.gov/vuln/detail/CVE-2024-32438

Back to Vulnerability Database

CVE-2024-32438

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations