Azindex Project

azindex_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Azindex

azindex

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-7688 1Azindex Project 1Azindex Jun 17, 2026 Sep 9, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 The AZIndex WordPress plugin through 0.8.1 does not have CSRF checks in some places, which could allow attackers to make logged in admin delete arbitrary indexes via a CSRF attack
CVE-2024-7687 1Azindex Project 1Azindex Jun 17, 2026 Sep 9, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The AZIndex WordPress plugin through 0.8.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF...Show more The AZIndex WordPress plugin through 0.8.1 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-7688

1Azindex Project

1Azindex

Jun 17, 2026

Sep 9, 2024

N/A· v4

6.5 MEDIUM· v3

N/A· v2

The AZIndex WordPress plugin through 0.8.1 does not have CSRF checks in some places, which could allow attackers to make logged in admin delete arbitrary indexes via a CSRF attack

CVE-2024-7687