← Back to CVE List
CVE-2024-6136
The wp-cart-for-digital-products WordPress plugin before 8.5.6 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt