CVE-2024-6136

Publication date

2024-08-09 06:00:02

Family

WPScan

State

PUBLISHED

Description

The wp-cart-for-digital-products WordPress plugin before 8.5.6 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks