Description Actions in the admin management of analytics models did not include the necessary token to prevent a CSRF risk. Remediation References CVE-2024-34008 Related Vulnerabilities Dolibarr Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16686) WordPress Plugin The Plus Addons for Elementor Cross-Site Scripting (4.1.11) WordPress Plugin MStore API-Create Native Android & iOS Apps On The Cloud SQL Injection (4.10.8) MySQL CVE-2021-1998 Vulnerability (CVE-2021-1998) MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2022-29905) Severity High Classification CVE-2024-34008 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities