Lucene search
PatchstackCVE-2023-51486HistoryMar 16, 2024 - 2:15 a.m.
CVE-2023-51486
2024-03-1602:15:07
CWE-352
Patchstack
web.nvd.nist.gov
47
cve-2023-51486
csrf
vulnerability
rednao
woocommerce
pdf
invoice builder
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
5.5
Confidence
High
EPSS
0
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in RedNao WooCommerce PDF Invoice Builder.This issue affects WooCommerce PDF Invoice Builder: from n/a through 1.2.101.
Affected configurations
Node
rednaowoocommerce_pdf_invoice_builderRange≤1.2.101wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rednao | woocommerce_pdf_invoice_builder | * | cpe:2.3:a:rednao:woocommerce_pdf_invoice_builder:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "woo-pdf-invoice-builder",
"product": "WooCommerce PDF Invoice Builder",
"vendor": "RedNao",
"versions": [
{
"changes": [
{
"at": "1.2.102",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.2.101",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
cvelist
cvelist
nvd
nvd
CVE-2023-51486
2024-03-16 02:15:07
wpvulndb
wpvulndb
WooCommerce PDF Invoice Builder < 1.2.102 - Cross-Site Request Forgery
2024-01-05 00:00:00
wordfence
wordfence
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
5.5
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2023-51486