Lucene search
China National Vulnerability DatabaseCNVD-2022-85496HistoryNov 30, 2022 - 12:00 a.m.
WordPress Find and Replace All plugin cross-site request forgery vulnerability
2022-11-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
wordpress
plugin
cross-site request forgery
vulnerability
administrator
database table
exploitation
0.001 Low
EPSS
Percentile
33.3%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. versions of the WordPress Find and Replace All plugin prior to 1.3 are vulnerable to cross-site request forgery, which could be exploited to allow a logged-in administrator to perform a replace any string operation in a database table.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress find and replace all plugin | lt | 1.3 |
Related
cvelist
cvelist
CVE-2022-3850 Find and Replace All <= 1.3 - Arbitrary Replacement via CSRF
2022-11-28 13:47:12
patchstack
patchstack
wpexploit
wpexploit
Find and Replace All <= 1.3 - Arbitrary Replacement via CSRF
2022-11-03 00:00:00
wpvulndb
wpvulndb
Find and Replace All <= 1.3 - Arbitrary Replacement via CSRF
2022-11-03 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-11-28 14:15:00
nvd
nvd
CVE-2022-3850
2022-11-28 14:15:18
cve
cve
CVE-2022-3850
2022-11-28 14:15:18