Lucene search
China National Vulnerability DatabaseCNVD-2023-74815HistoryOct 31, 2022 - 12:00 a.m.
WordPress theme Bricks license issue vulnerability
2022-10-3100:00:00
China National Vulnerability Database
www.cnvd.org.cn
2
wordpress
bricks theme
authorization vulnerability
php
mysql
ajax
security issue
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress theme is a theme for WordPress. An authorization issue vulnerability exists in WordPress theme Bricks plugin 1.0 and later, 1.5.3 and earlier versions, which stems from its lack of a functional check for the bricks_save_post AJAX operation, and can be exploited by an attacker to edit any page, post, or template on a vulnerable WordPress site.
Related
nvd
nvd
CVE-2022-3400
2022-10-28 17:15:26
CVE-2022-3401
2022-10-28 19:15:09
cvelist
cvelist
CVE-2022-3400
2022-10-28 16:57:41
CVE-2022-3401
2022-10-28 18:12:10
cve
cve
CVE-2022-3400
2022-10-28 17:15:26
CVE-2022-3401
2022-10-28 19:15:09
wpexploit
wpexploit
Bricks Builder < 1.5.4 - Subscriber+ Arbitrary Post/Page Edition
2022-10-03 00:00:00
wpvulndb
wpvulndb
Bricks Builder < 1.5.4 - Subscriber+ Arbitrary Post/Page Edition
2022-10-03 00:00:00
prion
prion
Authorization
2022-10-28 17:15:00
Authorization
2022-10-28 19:15:00
patchstack
patchstack