Sign in Subscribe

← All advisories

Medium severity4.3NVD Advisory· Published Apr 11, 2024· Updated Apr 28, 2026

CVE-2024-32107

CVE-2024-32107

Description

Cross-Site Request Forgery (CSRF) vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0.

Affected products

1

Xlplugins/Finale
cpe:2.3:a:xlplugins:finale:*:*:*:*:lite:wordpress:*:*
Range: <2.18.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

patchstack.com/database/vulnerability/finale-woocommerce-sales-countdown-timer-discount/wordpress-finale-lite-sales-countdown-timer-discount-for-woocommerce-plugin-2-18-0-cross-site-request-forgery-csrf-vulnerabilitynvdThird Party Advisory

News mentions

0

No linked articles in our index yet.