Lucene search
WPScanCVELIST:CVE-2022-1627HistoryJun 27, 2022 - 8:57 a.m.
CVE-2022-1627 My Private Site < 3.0.8 - Arbitrary Settings Update via CSRF
2022-06-2708:57:17
CWE-352
WPScan
www.cve.org
2
wordpress
plugin
csrf
vulnerability
settings update
The My Private Site WordPress plugin before 3.0.8 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
CNA Affected
[
{
"product": "My Private Site",
"vendor": "Unknown",
"versions": [
{
"lessThan": "3.0.8",
"status": "affected",
"version": "3.0.8",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2022-06-27 09:15:00
patchstack
patchstack
wpexploit
wpexploit
My Private Site < 3.0.8 - Arbitrary Settings Update via CSRF
2022-06-01 00:00:00
cnvd
cnvd
WordPress My Private Site plugin跨站请求伪造漏洞
2022-06-30 00:00:00
wpvulndb
wpvulndb
My Private Site < 3.0.8 - Arbitrary Settings Update via CSRF
2022-06-01 00:00:00
nvd
nvd
CVE-2022-1627
2022-06-27 09:15:09
cve
cve
CVE-2022-1627
2022-06-27 09:15:09