Lucene search
China National Vulnerability DatabaseCNVD-2022-88214HistorySep 28, 2022 - 12:00 a.m.
WordPress AlgolPlus Advanced Dynamic Pricing for WooCommerce Cross-Site Request Forgery Vulnerability
2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
wordpress
algolplus
dynamic pricing
woocommerce
csrf
vulnerability
cross-site request forgery
web application
php
EPSS
0.001
Percentile
20.8%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress AlgolPlus Advanced Dynamic Pricing for WooCommerce 4.1.3 and earlier versions contain a cross-site request forgery vulnerability that originates when a web application does not adequately verify that a request is from a trusted user. An attacker could use the vulnerability to spoof malicious requests to trick victims into clicking through to perform sensitive actions.
Related
patchstack
patchstack
cvelist
cvelist
wpvulndb
wpvulndb
Advanced Dynamic Pricing for WooCommerce < 4.1.4 - Settings Update via CSRF
2022-09-14 00:00:00
nvd
nvd
CVE-2022-38095
2022-09-23 14:15:12
cve
cve
CVE-2022-38095
2022-09-23 14:15:12
prion
prion
Cross site request forgery (csrf)
2022-09-23 14:15:00