25Şub
CVE-2024-13695 | Kriesi Enfold Plugin up to 6.0.9 on WordPress attachment_id server-side request forgery
A vulnerability classified as critical has been found in Kriesi Enfold Plugin up to 6.0.9 on WordPress. This affects an unknown part. The manipulation of the argument attachment_id leads to server-side request forgery. This vulnerability is uniquely identified as CVE-2024-13695. It is possible to initiate the attack remotely. There is no exploit available.