Lucene search
PatchstackCVE-2022-37405HistorySep 09, 2022 - 3:15 p.m.
CVE-2022-37405
2022-09-0915:15:13
CWE-352
Patchstack
web.nvd.nist.gov
44
3
cve-2022-37405
cross-site request forgery
csrf
mickey kay's better font awesome
wordpress
nvd
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
31.8%
Cross-Site Request Forgery (CSRF) vulnerability in Mickey Kay’s Better Font Awesome plugin <= 2.0.1 at WordPress.
Affected configurations
Node
better_font_awesome_projectbetter_font_awesomeRange≤2.0.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| better_font_awesome_project | better_font_awesome | * | cpe:2.3:a:better_font_awesome_project:better_font_awesome:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"product": "Better Font Awesome (WordPress plugin)",
"vendor": "Mickey Kay",
"versions": [
{
"lessThanOrEqual": "2.0.1",
"status": "affected",
"version": "<= 2.0.1",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
nvd
nvd
CVE-2022-37405
2022-09-09 15:15:13
wpvulndb
wpvulndb
Better Font Awesome < 2.0.2 - Settings Update via CSRF
2022-08-25 00:00:00
openvas
openvas
WordPress Better Font Awesome Plugin < 2.0.2 CSRF Vulnerability
2023-07-21 00:00:00
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2022-09-09 15:15:00
patchstack
patchstack
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
31.8%
Related for CVE-2022-37405