CVE Catalog

CVE-2024-34810

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Summary

CVE-2024-34810 describes a Cross-Site Request Forgery (CSRF) vulnerability in Extend Themes Skyline WP, allowing for CSRF attacks. This affects Skyline WP versions from n/a through 1.0.10.

Risk Assessment

An attacker could exploit this vulnerability to perform unauthorized actions on behalf of users, potentially leading to data loss or unauthorized access.

Recommendation

It is recommended to update Skyline WP to the latest version to mitigate this vulnerability and implement additional protections against CSRF attacks.

Original NVD description (English source)

Cross-Site request forgery (CSRF) vulnerability in Extend Themes Skyline WP allows Cross Site Request Forgery. This issue affects Skyline WP: from n/a through 1.0.10.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS