Lucene search
China National Vulnerability DatabaseCNVD-2022-62176HistoryJul 19, 2022 - 12:00 a.m.
WordPress plugin Insights from Google PageSpeed跨站请求伪造漏洞
2022-07-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
0.001 Low
EPSS
Percentile
43.5%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress plugin Insights from Google PageSpeed versions prior to 4.0.7 is vulnerable to cross-site request forgery, which stems from the plugin’s failure to validate CSRF before performing various actions, such as deleting a custom URL. (The vulnerability is caused by the plugin’s failure to validate CSRF before performing various actions (such as deleting a custom URL), which could be exploited by an attacker to cause a logged-in administrator to perform such actions via a CSRF attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress insights from google pagespeed | lt | 4.0.7 |
Related
nvd
nvd
CVE-2022-1672
2022-07-17 11:15:08
wpvulndb
wpvulndb
Insights from Google PageSpeed < 4.0.7 - Multiple CSRF
2022-06-27 00:00:00
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-07-17 11:15:00
wpexploit
wpexploit
Insights from Google PageSpeed < 4.0.7 - Multiple CSRF
2022-06-27 00:00:00
cvelist
cvelist
CVE-2022-1672 Insights from Google PageSpeed < 4.0.7 - Multiple CSRF
2022-07-17 10:35:33
cve
cve
CVE-2022-1672
2022-07-17 11:15:08