Lucene search
HistoryMar 01, 2023 - 2:15 p.m.
CVE-2022-45804
cve-2022-45804
csrf
vulnerability
robosoft photo gallery
rbs image gallery plugin
nvd
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
0.0005 Low
EPSS
Percentile
16.4%
Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.9 leading to galleries hierarchy change, included plugin deactivate & activate.
Affected configurations
Node
robosoftrobogalleryRange≤3.2.9
| Vendor | Product | Version | CPE |
|---|---|---|---|
| robosoft | robogallery | * | cpe:2.3:a:robosoft:robogallery:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "robo-gallery",
"product": "Photo Gallery, Images, Slider in Rbs Image Gallery",
"vendor": "RoboSoft",
"versions": [
{
"changes": [
{
"at": "3.2.11",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.2.9",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2023-03-01 14:15:00
nvd
nvd
CVE-2022-45804
2023-03-01 14:15:16
cvelist
cvelist
wpvulndb
wpvulndb
Robo Gallery < 3.2.11 - Plugin Activation/Deactivation via CSRF
2023-02-02 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
0.0005 Low
EPSS
Percentile
16.4%
Related for CVE-2022-45804