Lucene search
HistoryNov 08, 2022 - 7:15 p.m.
CVE-2022-27855
cve-2022-27855
csrf
fatcat apps
analytics cat
plugin
wordpress
nvd
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.0%
Cross-Site Request Forgery (CSRF) vulnerability in Fatcat Apps Analytics Cat plugin <= 1.0.9 on WordPress allows Plugin Settings Change.
Affected configurations
Node
fatcat_appsanalytics_cat_\(wordpress_plugin\)Range≤1.0.9
| CPE | Name | Operator | Version |
|---|---|---|---|
| fatcatapps:analytics_cat | fatcatapps analytics cat | lt | 1.1.0 |
CNA Affected
[
{
"vendor": "Fatcat Apps",
"product": "Analytics Cat (WordPress plugin)",
"versions": [
{
"version": "<= 1.0.9",
"status": "affected",
"lessThanOrEqual": "1.0.9",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
prion
prion
Cross site request forgery (csrf)
2022-11-08 19:15:00
patchstack
patchstack
nvd
nvd
CVE-2022-27855
2022-11-08 19:15:10
cvelist
cvelist
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.0%
Related for CVE-2022-27855