Lucene search
HistoryNov 18, 2022 - 7:15 p.m.
CVE-2022-41805
cve-2022-41805
csrf
vulnerability
booster for woocommerce
plugin
nvd
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.9%
Cross-Site Request Forgery (CSRF) vulnerability in Booster for WooCommerce plugin <= 5.6.6 on WordPress.
Affected configurations
Node
pluggabl_llcbooster_for_woocommerce_\(wordpress_plugin\)Range≤5.6.6
| CPE | Name | Operator | Version |
|---|---|---|---|
| booster:booster_for_woocommerce | booster booster for woocommerce | lt | 5.6.7 |
CNA Affected
[
{
"vendor": "Pluggabl LLC",
"product": "Booster for WooCommerce (WordPress plugin)",
"versions": [
{
"version": "<= 5.6.6",
"status": "affected",
"lessThanOrEqual": "5.6.6",
"versionType": "custom"
}
]
}
]Social References
More
Related
cnvd
cnvd
nvd
nvd
CVE-2022-41805
2022-11-18 19:15:30
wpvulndb
wpvulndb
Booster for WooCommerce < 5.6.7 - Settings Reset via CSRF
2022-10-28 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-11-18 19:15:00
cvelist
cvelist
patchstack
patchstack
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
4.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.9%
Related for CVE-2022-41805