Lucene search
HistoryJul 11, 2023 - 12:15 p.m.
CVE-2023-35780
cve-2023-35780
cross-site request forgery
csrf
vulnerability
andy whalen galleria plugin
nvd
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
6.9 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.0%
Cross-Site Request Forgery (CSRF) vulnerability in Andy Whalen Galleria plugin <= 1.0.3 versions.
Affected configurations
Node
andy_whalengalleriaRange≤1.0.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| galleria_project:galleria | galleria project galleria | le | 1.0.3 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "galleria",
"product": "Galleria",
"vendor": "Andy Whalen",
"versions": [
{
"lessThanOrEqual": "1.0.3",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Galleria <= 1.0.3 - Cross-Site Request Forgery
2023-06-16 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2023-35780
2023-07-11 12:15:09
prion
prion
Cross site request forgery (csrf)
2023-07-11 12:15:00
wordfence
wordfence
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
6.9 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.0%
Related for CVE-2023-35780