Sign in Subscribe

← All advisories

High severity7.1NVD Advisory· Published Dec 16, 2024· Updated Apr 28, 2026

CVE-2024-56015

CVE-2024-56015

Description

Cross-Site Request Forgery (CSRF) vulnerability in John Godley Tidy Up allows Reflected XSS.This issue affects Tidy Up: from n/a through 1.3.

Affected products

1

WordPress/Tidy Upinferred
Range: <=1.3
Package: https://wordpress.org/plugins/tidy-up

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

patchstack.com/database/wordpress/plugin/tidy-up/vulnerability/wordpress-tidy-up-plugin-1-3-csrf-to-reflected-cross-site-scripting-vulnerabilitynvd

News mentions

0

No linked articles in our index yet.