Lucene search
China National Vulnerability DatabaseCNVD-2022-62207HistoryJun 13, 2022 - 12:00 a.m.
WordPress Database Backup plugin跨站请求伪造漏洞
2022-06-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
wordpress
database backup
cross-site request forgery
php
configuration
vulnerability
EPSS
0.001
Percentile
32.1%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. cross-site request forgery vulnerability exists in versions of WordPress Database Backup plugin prior to 2.5.2, which stems from a cross-site request forgery check not being performed when updating scheduled backup settings. An attacker could use this vulnerability to get the logged-in administrator to change the configuration via a CSRF attack.
Related
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-06-08 10:15:00
openvas
openvas
WordPress Database Backup for WordPress Plugin < 2.5.2 CSRF Vulnerability
2022-06-09 00:00:00
wpvulndb
wpvulndb
nvd
nvd
CVE-2022-1577
2022-06-08 10:15:09
cve
cve
CVE-2022-1577
2022-06-08 10:15:09
cvelist
cvelist
wpexploit
wpexploit