Lucene search
China National Vulnerability DatabaseCNVD-2023-74432HistoryAug 31, 2022 - 12:00 a.m.
WordPress Stop Spam Comments Information Disclosure Vulnerability
2022-08-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information disclosure vulnerability exists in WordPress Stop Spam Comments 0.2.1.2 and prior versions, which stems from an inability to properly generate Javascript access tokens to prevent abuse of the comments section. An attacker can easily collect this value and add it to a request by exploiting the vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress stop spam comments <=0. | eq | 2.1.2 |
Related
prion
prion
Cross site request forgery (csrf)
2022-08-29 18:15:00
nvd
nvd
CVE-2022-1663
2022-08-29 18:15:08
cve
cve
CVE-2022-1663
2022-08-29 18:15:08
wpexploit
wpexploit
Stop Spam Comments <= 0.2.1.2 - Access Token Bypass
2022-08-08 00:00:00
patchstack
patchstack
wpvulndb
wpvulndb
Stop Spam Comments <= 0.2.1.2 - Access Token Bypass
2022-08-08 00:00:00
cvelist
cvelist
CVE-2022-1663 Stop Spam Comments <= 0.2.1.2 - Access Token Bypass
2022-08-29 14:40:25