Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvePatchstackCVE-2022-41685
HistoryNov 18, 2022 - 11:15 p.m.

CVE-2022-41685

2022-11-1823:15:26
CWE-352
Patchstack
web.nvd.nist.gov
39
3
cve-2022-41685
csrf
vulnerabilities
viszt péter
integration
szamlazz.hu
woocommerce
csomagpontok
szállítási címkék
wordpress

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

9

Confidence

High

EPSS

0.001

Percentile

46.6%

JSON

Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Viszt Péter’s Integration for Szamlazz.hu & WooCommerce plugin <= 5.6.3.2 and Csomagpontok és szállítási címkék WooCommerce-hez plugin <= 1.9.0.2 on WordPress.

Affected configurations

Nvd
Vulners
Node
visztpeterintegration_for_szamlazz.hu_\&_woocommerceRange<5.6.3.3wordpress
OR
visztpeterpackage_points_and_shipping_labels_for_woocommerceRange<1.9.0.3wordpress
VendorProductVersionCPE
visztpeterintegration_for_szamlazz.hu_\&_woocommerce*cpe:2.3:a:visztpeter:integration_for_szamlazz.hu_\&_woocommerce:*:*:*:*:*:wordpress:*:*
visztpeterpackage_points_and_shipping_labels_for_woocommerce*cpe:2.3:a:visztpeter:package_points_and_shipping_labels_for_woocommerce:*:*:*:*:*:wordpress:*:*

CNA Affected

[
  {
    "vendor": "Viszt Péter",
    "product": "Integration for Szamlazz.hu & WooCommerce (WordPress plugin)",
    "versions": [
      {
        "version": "<= 5.6.3.2",
        "status": "affected",
        "lessThanOrEqual": "5.6.3.2",
        "versionType": "custom"
      }
    ]
  },
  {
    "vendor": "Viszt Péter",
    "product": "Csomagpontok és szállítási címkék WooCommerce-hez (WordPress plugin)",
    "versions": [
      {
        "version": "<= 1.9.0.2",
        "status": "affected",
        "lessThanOrEqual": "1.9.0.2",
        "versionType": "custom"
      }
    ]
  }
]

Social References

More

Related

nvd 1
prion 1
patchstack 2
cvelist 1
wpvulndb 1
wpexploit 1
nvd
nvd
CVE-2022-41685
2022-11-18 23:15:26
prion
prion
Cross site request forgery (csrf)
2022-11-18 23:15:00
patchstack
patchstack
WordPress Integration for Szamlazz.hu & WooCommerce plugin <= 5.6.3.2 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
2022-10-20 00:00:00
WordPress Csomagpontok és szállítási címkék WooCommerce hez plugin <= 1.9.0.2 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
2022-10-20 00:00:00
cvelist
cvelist
CVE-2022-41685 Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Integration for Szamlazz.hu & WooCommerce and Csomagpontok és szállítási címkék WooCommerce hez plugins
2022-11-18 22:18:33
wpvulndb
wpvulndb
Multiple Plugins from Viszt Peter - Multiple CSRF
2022-09-14 00:00:00
wpexploit
wpexploit
Multiple Plugins from Viszt Peter - Multiple CSRF
2022-09-14 00:00:00

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

9

Confidence

High

EPSS

0.001

Percentile

46.6%

JSON
Related for CVE-2022-41685
nvd1prion1patchstack2cvelist1wpvulndb1wpexploit1