The WP Sentry WordPress plugin through 1.0 lacks CSRF check, allowing attackers to trigger Stored Cross-Site Scripting
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
![]() | CVE-2022-1844 | 27 Jun 202209:15 | – | nvd |
![]() | WP Sentry <= 1.0 - Arbitrary Settings Update to Stored XSS via CSRF | 31 May 202200:00 | – | wpvulndb |
![]() | WordPress WP Sentry plugin cross-site request forgery vulnerability | 30 Jun 202200:00 | – | cnvd |
![]() | CVE-2022-1844 WP Sentry <= 1.0 - Arbitrary Settings Update to Stored XSS via CSRF | 27 Jun 202208:57 | – | cvelist |
![]() | Cross site scripting | 27 Jun 202209:15 | – | prion |
![]() | WP Sentry <= 1.0 - Arbitrary Settings Update to Stored XSS via CSRF | 31 May 202200:00 | – | wpexploit |
[
{
"product": "WP Sentry",
"vendor": "Unknown",
"versions": [
{
"lessThanOrEqual": "1.0",
"status": "affected",
"version": "1.0",
"versionType": "custom"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo