Lucene search

CVE-2022-1203 Content Mask < 1.8.4.1 - Subscriber+ Arbitrary Options Update

🗓️ 30 May 2022 00:00:00Reported by WPScanType

Content Mask plugin vulnerability allows unauthorized users to modify blog option

Reporter	Title	Published	Views	Family All 7
GithubExploit	Exploit for Missing Authorization in Content Mask Project Content Mask	3 Aug 202309:39	–	githubexploit
Patchstack	WordPress Content Mask plugin <= 1.8.4 - Arbitrary Options Update vulnerability	3 May 202200:00	–	patchstack
wpexploit	Content Mask < 1.8.4.1 - Subscriber+ Arbitrary Options Update	3 May 202200:00	–	wpexploit
WPVulnDB	Content Mask < 1.8.4.1 - Subscriber+ Arbitrary Options Update	3 May 202200:00	–	wpvulndb
CVE	CVE-2022-1203	30 May 202209:15	–	cve
NVD	CVE-2022-1203	30 May 202209:15	–	nvd
Prion	Cross site request forgery (csrf)	30 May 202209:15	–	prion

[
  {
    "vendor": "Unknown",
    "product": "Content Mask",
    "versions": [
      {
        "status": "affected",
        "versionType": "custom",
        "version": "0",
        "lessThan": "1.8.4.1"
      }
    ],
    "defaultStatus": "unaffected",
    "collectionURL": "https://wordpress.org/plugins"
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/3c9969e5-ca8e-4e5d-a482-c6b5c4257820

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 May 2022 00:00Current

4.9Medium risk

Vulners AI Score4.9

EPSS0.001