Lucene search
HistoryNov 03, 2022 - 8:15 p.m.
CVE-2022-40131
cve
2022
40131
csrf
vulnerability
a3rev
software
page view count
plugin
wordpress
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
4.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.0%
Cross-Site Request Forgery (CSRF) vulnerability in a3rev Software Page View Count plugin <= 2.5.5 on WordPress allows an attacker to reset the plugin settings.
Affected configurations
Node
a3rev_softwarepage_view_count_\(wordpress_plugin\)Range≤2.5.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| a3rev:page_view_count | a3rev page view count | le | 2.5.5 |
CNA Affected
[
{
"vendor": "a3rev Software",
"product": "Page View Count (WordPress plugin)",
"versions": [
{
"version": "<= 2.5.5",
"status": "affected",
"lessThanOrEqual": "2.5.5",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
patchstack
patchstack
wpvulndb
wpvulndb
Page View Count < 2.5.6 - Settings Reset via CSRF
2022-10-13 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-11-03 20:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-40131
2022-11-03 20:15:30
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
4.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
21.0%
Related for CVE-2022-40131