Lucene search
HistoryOct 16, 2023 - 10:15 a.m.
CVE-2023-45642
cve
2023
45642
cross-site request forgery
csrf
hassan ali snap pixel
nvd
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Cross-Site Request Forgery (CSRF) vulnerability in Hassan Ali Snap Pixel plugin <= 1.5.7 versions.
Affected configurations
Node
hassan_alisnap_pixelRange≤1.5.7
| CPE | Name | Operator | Version |
|---|---|---|---|
| coresol:snap_pixel | coresol snap pixel | le | 1.5.7 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "snap-pixel",
"product": "Snap Pixel",
"vendor": "Hassan Ali",
"versions": [
{
"lessThanOrEqual": "1.5.7",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2023-45642
2023-10-16 10:15:11
wpvulndb
wpvulndb
Snap Pixel <= 1.5.7 - Arbitrary Settings Update via CSRF
2023-10-17 00:00:00
prion
prion
Cross site request forgery (csrf)
2023-10-16 10:15:00
wordfence
wordfence
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
8.8 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
24.3%
Related for CVE-2023-45642