Lucene search
China National Vulnerability DatabaseCNVD-2022-54902HistoryJul 27, 2022 - 12:00 a.m.
WordPress plugin Name Directory跨站请求伪造漏洞
2022-07-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
26.5%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress plugin Name Directory versions prior to 1.25.4 are vulnerable to cross-site request forgery, which stems from a failure to perform CSRF checks when importing names and a lack of cleanup and escaping in some of the imported The vulnerability stems from a failure to perform CSRF checks when importing names, and a lack of cleanup and escaping in some of the imported data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress name directory | lt | 1.25.4 |
Related
wpvulndb
wpvulndb
Name Directory < 1.25.4 - Stored Cross-Site Scripting via CSRF
2022-07-04 00:00:00
nvd
nvd
CVE-2022-2071
2022-07-25 13:15:08
wpexploit
wpexploit
Name Directory < 1.25.4 - Stored Cross-Site Scripting via CSRF
2022-07-04 00:00:00
cvelist
cvelist
CVE-2022-2071 Name Directory < 1.25.4 - Stored Cross-Site Scripting via CSRF
2022-07-25 12:46:28
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-07-25 13:15:00
cve
cve
CVE-2022-2071
2022-07-25 13:15:08