Lucene search
WPScanCVELIST:CVE-2022-1761HistoryJun 13, 2022 - 12:42 p.m.
CVE-2022-1761 Peter’s Collaboration E-mails <= 2.2.0 - Arbitrary Settings Update via CSRF
2022-06-1312:42:37
CWE-352
WPScan
www.cve.org
0.001 Low
EPSS
Percentile
26.3%
The Peter’s Collaboration E-mails WordPress plugin through 2.2.0 is vulnerable to CSRF due to missing nonce checks. This allows the change of its settings, which can be used to lower the required user level, change texts, the used email address and more.
CNA Affected
[
{
"product": "Peter’s Collaboration E-mails",
"vendor": "Unknown",
"versions": [
{
"lessThanOrEqual": "2.2.0",
"status": "affected",
"version": "2.2.0",
"versionType": "custom"
}
]
}
]Related
cnvd
cnvd
nvd
nvd
CVE-2022-1761
2022-06-13 13:15:12
wpvulndb
wpvulndb
Peter’s Collaboration E-mails <= 2.2.0 - Arbitrary Settings Update via CSRF
2022-05-23 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-06-13 13:15:00
patchstack
patchstack
wpexploit
wpexploit
Peter’s Collaboration E-mails <= 2.2.0 - Arbitrary Settings Update via CSRF
2022-05-23 00:00:00
cve
cve
CVE-2022-1761
2022-06-13 13:15:12