CVE-2024-32796

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Apr 24, 2024

CWE ID 532

Summary

CVE-2024-32796 refers to a vulnerability in WP Fusion Lite, a plugin used on WordPress sites. This issue allows an attacker to insert sensitive information into log files, potentially exposing confidential data. The impacted versions of WP Fusion Lite range from the initial release through 3.42.10, meaning numerous sites may be at risk. This log injection vulnerability could lead to privacy breaches and other malicious activities. Users are encouraged to update to the latest version of WP Fusion Lite as soon as possible to mitigate these risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vd7CDC
https://www.cve.org/CVERecord?id=CVE-2024-32796
https://nvd.nist.gov/vuln/detail/CVE-2024-32796

Back to Vulnerability Database

CVE-2024-32796

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations