Lucene search
China National Vulnerability DatabaseCNVD-2022-57168HistoryJun 22, 2022 - 12:00 a.m.
WordPress CaPa Protect plugin cross-site request forgery vulnerability
2022-06-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.001 Low
EPSS
Percentile
26.3%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress CaPa Protect plugin is vulnerable to cross-site request forgery, which stems from the failure to perform CSRF checks when updating its settings, and can be exploited by attackers to allow, via CSRF attacks logged-in administrators to change them and disable the application’s protection.
| CPE | Name | Operator | Version |
|---|---|---|---|
| WordPress CaPa Protect plugin <=0. | eq | 5.8.2 |
Related
wpexploit
wpexploit
CaPa Protect <= 0.5.8.2 - Arbitrary Settings Update via CSRF
2022-05-30 00:00:00
cve
cve
CVE-2022-1832
2022-06-20 11:15:10
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-06-20 11:15:00
nvd
nvd
CVE-2022-1832
2022-06-20 11:15:10
wpvulndb
wpvulndb
CaPa Protect <= 0.5.8.2 - Arbitrary Settings Update via CSRF
2022-05-30 00:00:00
cvelist
cvelist
CVE-2022-1832 CaPa Protect <= 0.5.8.2 - Arbitrary Settings Update via CSRF
2022-06-20 10:26:11