Cross-Site Request Forgery (CSRF) vulnerability in Apa APA Register Newsletter Form allows SQL Injection.This issue affects APA Register Newsletter Form: from n/a through 1.0.0.
References
Configurations
History
24 Oct 2024, 15:35
Type | Values Removed | Values Added |
---|---|---|
First Time |
Apa
Apa apa Register Newsletter Form |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.8 |
CPE | cpe:2.3:a:apa:apa_register_newsletter_form:*:*:*:*:*:wordpress:*:* | |
References | () https://patchstack.com/database/vulnerability/apa-register-newsletter-form/wordpress-apa-register-newsletter-form-plugin-1-0-0-csrf-to-sql-injection-vulnerability?_s_id=cve - Third Party Advisory |
21 Oct 2024, 17:09
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
20 Oct 2024, 09:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-10-20 09:15
Updated : 2024-10-24 15:35
NVD link : CVE-2024-49621
Mitre link : CVE-2024-49621
CVE.ORG link : CVE-2024-49621
JSON object : View
Products Affected
apa
- apa_register_newsletter_form
CWE
CWE-352
Cross-Site Request Forgery (CSRF)