CVE-2024-24837

Summary

Cross-Site Request Forgery (CSRF) vulnerability in Frédéric GILLES FG PrestaShop to WooCommerce, Frédéric GILLES FG Drupal to WordPress, Frédéric GILLES FG Joomla to WordPress.This issue affects FG PrestaShop to WooCommerce: from n/a through 4.44.3; FG Drupal to WordPress: from n/a through 3.67.0; FG Joomla to WordPress: from n/a through 4.15.0.

Affected Software

VendorProductVersion RangeStatus
Frédéric GILLESFG PrestaShop to WooCommercen/a <= 4.44.3affected
Frédéric GILLESFG Drupal to WordPressn/a <= 3.67.0affected
Frédéric GILLESFG Joomla to WordPressn/a <= 4.15.0affected

Weaknesses

  • CWE-352: CWE-352 Cross-Site Request Forgery (CSRF)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References