{"id":"BIT-wordpress-2024-43337","details":"Cross-Site Request Forgery (CSRF) vulnerability in Brave Brave Popup Builder.This issue affects Brave Popup Builder: from n/a through 0.7.0.","aliases":["BIT-wordpress-multisite-2024-43337","CVE-2024-43337"],"modified":"2024-08-28T08:12:08.124512Z","published":"2024-08-28T07:28:54.724Z","database_specific":{"cpes":["cpe:2.3:a:getbrave:brave:*:*:*:*:*:wordpress:*:*","cpe:2.3:a:getbrave:brave:*:*:*:*:wordpress:wordpress:*:*"],"severity":"Medium"},"references":[{"type":"WEB","url":"https://patchstack.com/database/vulnerability/brave-popup-builder/wordpress-brave-plugin-0-7-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve"}],"affected":[{"package":{"name":"wordpress","ecosystem":"Bitnami","purl":"pkg:bitnami/wordpress"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.7.1"}]}],"database_specific":{"source":"https://github.com/bitnami/vulndb/tree/main/data/wordpress/BIT-wordpress-2024-43337.json"},"severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}]}],"schema_version":"1.7.3"}