Lucene search
HistoryMar 13, 2023 - 10:15 a.m.
CVE-2022-47166
cve-2022-47166
csrf
vulnerability
voidcoders
contact form 7
widget
elementor page builder
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
27.6%
Cross-Site Request Forgery (CSRF) vulnerability in voidCoders Void Contact Form 7 Widget For Elementor Page Builder plugin <=Β 2.1.1 versions.
Affected configurations
Node
voidcodersvoid_contact_form_7_widget_for_elementor_page_builderRangeβ€2.1.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| voidcoders | void_contact_form_7_widget_for_elementor_page_builder | * | cpe:2.3:a:voidcoders:void_contact_form_7_widget_for_elementor_page_builder:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "cf7-widget-elementor",
"product": "Void Contact Form 7 Widget For Elementor Page Builder",
"vendor": "voidCoders",
"versions": [
{
"changes": [
{
"at": "2.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.1.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2023-03-13 10:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-47166
2023-03-13 10:15:09
wordfence
wordfence
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
27.6%
Related for CVE-2022-47166