Lucene search
WPScanCVELIST:CVE-2022-0141HistoryApr 12, 2022 - 11:15 a.m.
CVE-2022-0141 Visual Form Builder < 3.0.8 - Entries Deletion/Restoration via CSRF
2022-04-1211:15:22
CWE-352
WPScan
www.cve.org
2
cve-2022-0141
visual form builder
entries deletion
restoration
csrf
wordpress plugin
nonce checks
admin
editor
form entries
The Visual Form Builder WordPress plugin before 3.0.8 does not enforce nonce checks which could allow attackers to make a logged in admin or editor delete and restore arbitrary form entries via CSRF attacks
CNA Affected
[
{
"product": "Visual Form Builder",
"vendor": "Unknown",
"versions": [
{
"lessThan": "3.0.8",
"status": "affected",
"version": "3.0.8",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2022-04-12 12:15:00
wpvulndb
wpvulndb
Visual Form Builder < 3.0.8 - Entries Deletion/Restoration via CSRF
2022-04-11 00:00:00
patchstack
patchstack
wpexploit
wpexploit
Visual Form Builder < 3.0.8 - Entries Deletion/Restoration via CSRF
2022-04-11 00:00:00
nvd
nvd
CVE-2022-0141
2022-04-12 12:15:08
cve
cve
CVE-2022-0141
2022-04-12 12:15:08