Lucene search
HistoryJul 10, 2023 - 4:15 p.m.
CVE-2023-28989
cve-2023-28989
cross-site request forgery
csrf
wedevs happy addons
elementor plugin
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.2%
Cross-Site Request Forgery (CSRF) vulnerability in weDevs Happy Addons for Elementor plugin <=Β 3.8.2 versions.
Affected configurations
Node
wedevshappy_addons_for_elementorRangeβ€3.8.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wedevs | happy_addons_for_elementor | * | cpe:2.3:a:wedevs:happy_addons_for_elementor:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "happy-elementor-addons",
"product": "Happy Addons for Elementor",
"vendor": "weDevs",
"versions": [
{
"changes": [
{
"at": "3.8.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.8.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
openvas
openvas
WordPress Happy Addons for Elementor Plugin < 3.8.3 CSRF Vulnerability
2023-07-11 00:00:00
wpvulndb
wpvulndb
Happy Addons for Elementor < 3.8.3 - Cross-Site Request Forgery
2023-03-29 00:00:00
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2023-07-10 16:15:00
nvd
nvd
CVE-2023-28989
2023-07-10 16:15:50
wordfence
wordfence
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.2%
Related for CVE-2023-28989