Lucene search

CVE-2022-3994

🗓️ 02 Jan 2023 22:15:15Reported by WPScanType

The Authenticator WordPress plugin before 1.3.1 allows unauthorized token updates

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
RedhatCVE	CVE-2022-3994	22 May 202522:14	–	redhatcve
Cvelist	CVE-2022-3994 Authenticator < 1.3.1 - Subscriber+ Denial of Service via Feed Token Disclosure	2 Jan 202321:49	–	cvelist
NVD	CVE-2022-3994	2 Jan 202322:15	–	nvd
Prion	Code injection	2 Jan 202322:15	–	prion
Vulnrichment	CVE-2022-3994 Authenticator < 1.3.1 - Subscriber+ Denial of Service via Feed Token Disclosure	2 Jan 202321:49	–	vulnrichment

Nvd

Vulners

Node

authenticator_project authenticatorRange<1.3.1wordpress

[
  {
    "vendor": "Unknown",
    "product": "Authenticator",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.3.1"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/802a2139-ab48-4281-888f-225e6e3134aa

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Jan 2023 22:15Current

4.5Medium risk

Vulners AI Score4.5

CVSS34.3

EPSS0.00091

SSVC