cleantalk
Vulnerabilities and Security Researches

Finale Lite – Sales Countdown Timer & Discount for WooCommerce, CVE-2024-32107

CVE, Research URL

CVE-2024-32107

Home page URL

Security reports for Finale Lite – Sales Countdown Timer & Discount for WooCommerce

Application

Finale Lite – Sales Countdown Timer & Discount for WooCommerce

Published on
Apr 11, 2024
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0.
Affected versions
Min -, max 2.18.1.
Status
vulnerable
Previous vulnerability researches
Finale Lite – Sales Countdown Timer & Discount for WooCommerce (CVE-2024-32107) , Jun 07, 2024
Finale Lite – Sales Countdown Timer & Discount for WooCommerce (562ea416d85a2049d70ab426e7463803d31cd817) , Jun 07, 2024
Finale Lite – Sales Countdown Timer & Discount for WooCommerce (CVE-2024-1120) , Jun 07, 2024
Finale Lite – Sales Countdown Timer & Discount for WooCommerce (CVE-2024-30485) , Jun 07, 2024
Finale Lite – Sales Countdown Timer & Discount for WooCommerce (CVE-2023-47180) , Jun 10, 2024
New vulnerability
Business Directory Plugin – Easy Listing Directories for WordPress (CVE-2024-13887) , Mar 14, 2025
AppPresser – Mobile App Framework (CVE-2025-1561) , Mar 14, 2025
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2025-1119) , Mar 14, 2025
CRM and Lead Management by vcita (CVE-2024-13703) , Mar 14, 2025
WP Recipe Maker (CVE-2025-1503) , Mar 14, 2025