CVE-2024-33689

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Apr 26, 2024

CWE ID 352

Summary

CVE-2024-33689: A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Tony Zeoli, Tony Hayes Radio Station, affecting versions from n/a to 2.5.7. An attacker exploiting this issue can force an authenticated user to perform unintended actions on the radio station's website, potentially leading to data manipulation or unauthorized access. Users are advised to update their radio station instances to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vn6RwY
https://www.cve.org/CVERecord?id=CVE-2024-33689
https://nvd.nist.gov/vuln/detail/CVE-2024-33689

Back to Vulnerability Database

CVE-2024-33689

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations