Lucene search
HistorySep 09, 2022 - 3:15 p.m.
CVE-2022-38058
cve-2022-38058
authentication
subscriber
plugin
setting
vulnerability
wp shamsi
wordpress
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
4.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
22.9%
Authenticated (subscriber+) Plugin Setting change vulnerability in WP Shamsi plugin <= 4.1.1 at WordPress.
Affected configurations
Node
wpvar.comwp_shamsi_\(wordpress_plugin\)Range≤4.1.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| wpvar:wp_shamsi | wpvar wp shamsi | le | 4.1.1 |
CNA Affected
[
{
"product": "WP Shamsi (WordPress plugin)",
"vendor": "wpvar.com",
"versions": [
{
"lessThanOrEqual": "4.1.1",
"status": "affected",
"version": "<= 4.1.1",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
wpvulndb
wpvulndb
WP Shamsi < 4.2.0 - Subscriber+ Settings Update
2022-09-05 00:00:00
prion
prion
Command injection
2022-09-09 15:15:00
nvd
nvd
CVE-2022-38058
2022-09-09 15:15:13
patchstack
patchstack
cvelist
cvelist
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
4.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
22.9%
Related for CVE-2022-38058