Lucene search
HistoryMay 26, 2023 - 3:15 p.m.
CVE-2023-25058
cve
2023
25058
csrf
cross-site request forgery
brainstorm force
schema
all in one
rich snippets
plugin
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.1%
Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force Schema – All In One Schema Rich Snippets plugin <= 1.6.5 versions.
Affected configurations
Node
brainstorm_forceschema_–_all_in_one_schema_rich_snippetsRange≤1.6.5
| CPE | Name | Operator | Version |
|---|---|---|---|
| brainstormforce:schema | brainstormforce schema | lt | 1.6.6 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "all-in-one-schemaorg-rich-snippets",
"product": "Schema – All In One Schema Rich Snippets",
"vendor": "Brainstorm Force",
"versions": [
{
"changes": [
{
"at": "1.6.6",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.6.5",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2023-25058
2023-05-26 15:15:11
cvelist
cvelist
wpvulndb
wpvulndb
Schema - All In One Schema Rich Snippets < 1.6.6 - Multiple CSRF
2023-02-16 00:00:00
prion
prion
Cross site request forgery (csrf)
2023-05-26 15:15:00
wordfence
wordfence
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
28.1%
Related for CVE-2023-25058