Lucene search
China National Vulnerability DatabaseCNVD-2022-57627HistoryJun 30, 2022 - 12:00 a.m.
WordPress WP Sentry plugin cross-site request forgery vulnerability
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
0.001 Low
EPSS
Percentile
25.9%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Sentry plugin version 1.0 and earlier versions are vulnerable to cross-site request forgery, which stems from a failure to perform CSRF checks when updating its settings. An attacker could use this vulnerability to make changes to the logged-in administrator via a CSRF attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wp sentry plugin | le | 1.0 |
Related
nvd
nvd
CVE-2022-1844
2022-06-27 09:15:09
cve
cve
CVE-2022-1844
2022-06-27 09:15:09
wpvulndb
wpvulndb
WP Sentry <= 1.0 - Arbitrary Settings Update to Stored XSS via CSRF
2022-05-31 00:00:00
prion
prion
Cross site scripting
2022-06-27 09:15:00
cvelist
cvelist
wpexploit
wpexploit
WP Sentry <= 1.0 - Arbitrary Settings Update to Stored XSS via CSRF
2022-05-31 00:00:00