cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12774,https://securityvulnerability.io/vulnerability/CVE-2024-12774,CSRF Vulnerability in Altra Side Menu Plugin for WordPress,"The Altra Side Menu plugin for WordPress, up to version 2.0, lacks sufficient CSRF protections, potentially enabling attackers to exploit this weakness. By crafting a malicious request, an attacker may trick an authenticated admin into executing arbitrary actions, such as deleting menu items without their consent. This vulnerability poses a significant risk to the integrity of WordPress sites that use this plugin, requiring immediate attention to ensure site security.",WordPress,Altra Side Menu,6.5,MEDIUM,0.0004299999854993075,false,,false,false,true,true,false,false,2025-01-27T06:00:09.084Z,0
CVE-2024-12773,https://securityvulnerability.io/vulnerability/CVE-2024-12773,SQL Injection Vulnerability in Altra Side Menu WordPress Plugin,"The Altra Side Menu plugin for WordPress, up to version 2.0, is susceptible to SQL injection due to improper sanitization and escaping of user-supplied parameters in SQL statements. This flaw allows authenticated users, particularly admin roles, to manipulate SQL queries, potentially leading to unauthorized data access or alteration within the WordPress database. It highlights the necessity for secure coding practices to ensure the integrity of web applications.",WordPress,Altra Side Menu,7.2,HIGH,0.0004299999854993075,false,,false,false,true,true,false,false,2025-01-27T06:00:06.982Z,0