cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-8047,https://securityvulnerability.io/vulnerability/CVE-2024-8047,Unprotected CSRF Vulnerability in Visual Sound WordPress Plugin,"The Visual Sound plugin for WordPress, up to version 1.06, is susceptible to Cross-Site Request Forgery (CSRF) vulnerabilities. The absence of adequate CSRF checks during the settings update process allows attackers to exploit this flaw. By leveraging malicious requests, an attacker can manipulate an authenticated administrator's settings without their consent. This vulnerability underscores the importance of implementing CSRF protection measures to guard against unauthorized modifications and maintain the integrity of WordPress sites.",Wordpress,Visual Sound,6.5,MEDIUM,0.0004799999878741801,false,,false,false,false,,false,false,2024-09-17T06:15:00.000Z,0
CVE-2024-7859,https://securityvulnerability.io/vulnerability/CVE-2024-7859,Plugin Vulnerability Could Allow CSRF Admin Changes,"The Visual Sound plugin for WordPress lacks adequate CSRF protection in its updates, enabling attackers to potentially manipulate settings without proper authorization. This vulnerability can be exploited when a logged-in administrator interacts with a malicious webpage, leading to unintended changes within the plugin’s configuration.",Wordpress,Visual Sound,6.5,MEDIUM,0.0004799999878741801,false,,false,false,true,true,false,false,2024-09-12T06:00:05.954Z,0