Lucene search
China National Vulnerability DatabaseCNVD-2022-88247HistorySep 28, 2022 - 12:00 a.m.
WordPress Login Block IPs cross-site request forgery vulnerability
2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
0.001 Low
EPSS
Percentile
26.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Login Block IPs 1.0.0 and earlier versions are vulnerable to cross-site request forgery, which stems from CSRF checks not being performed when updating their settings, and can be exploited to allow logged-in administrators to change their settings.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress login block ips | le | 1.0.0 |
Related
nvd
nvd
CVE-2022-3098
2022-09-26 13:15:11
cve
cve
CVE-2022-3098
2022-09-26 13:15:11
cvelist
cvelist
CVE-2022-3098 Login Block IPs <= 1.0.0 - Arbitrary Setting Update via CSRF
2022-09-26 12:35:43
patchstack
patchstack
wpvulndb
wpvulndb
Login Block IPs <= 1.0.0 - Arbitrary Setting Update via CSRF
2022-09-05 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-09-26 13:15:00
wpexploit
wpexploit
Login Block IPs <= 1.0.0 - Arbitrary Setting Update via CSRF
2022-09-05 00:00:00