Lucene search
China National Vulnerability DatabaseCNVD-2022-56555HistoryJun 30, 2022 - 12:00 a.m.
WordPress MailPress plugin cross-site request forgery vulnerability
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
0.001 Low
EPSS
Percentile
26.3%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress MailPress plugin 7.2.1 and earlier versions have a cross-site request forgery vulnerability that stems from CSRF checks not being performed in various places, which can be exploited by attackers to CSRF attack to make the logged-in administrator change settings, clear log files, etc.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress mailpress plugin | lt | 7.2.1 |
Related
wpexploit
wpexploit
MailPress <= 7.2.1 - Arbitrary Settings Update & Log Files Purge via CSRF
2022-05-31 00:00:00
cvelist
cvelist
wpvulndb
wpvulndb
MailPress <= 7.2.1 - Arbitrary Settings Update & Log Files Purge via CSRF
2022-05-31 00:00:00
cve
cve
CVE-2022-1843
2022-06-27 09:15:09
prion
prion
Cross site request forgery (csrf)
2022-06-27 09:15:00
nvd
nvd
CVE-2022-1843
2022-06-27 09:15:09