In WordPress Header Builder Plugin – Pearl versions up to 1.3.8 a medium severity vulnerability CVE-2024-12206 was detected. It allows attackers to delete headers by tricking admins into clicking malicious links. To address this issue, users should upgrade to version 1.3.9 or later. For more details, visit https://nvd.nist.gov/vuln/detail/CVE-2024-12206.
WordPress: Cross-Site Request Forgery (CSRF) Vulnerability in Header Builder Plugin
by the Hossted team
10.01.2025
10.01.2025