Lucene search
WPScanCVELIST:CVE-2022-2276HistoryAug 22, 2022 - 3:00 p.m.
CVE-2022-2276 WP Edit Menu < 1.5.0 - Unauthenticated Arbitrary Post Deletion
2022-08-2215:00:57
CWE-862
CWE-352
WPScan
www.cve.org
2
cve-2022-2276
wp edit menu
unauthenticated
arbitrary
post deletion
ajax action
The WP Edit Menu WordPress plugin before 1.5.0 does not have authorisation and CSRF in an AJAX action, which could allow unauthenticated attackers to delete arbitrary posts/pages from the blog
CNA Affected
[
{
"product": "WP Edit Menu",
"vendor": "Unknown",
"versions": [
{
"lessThan": "1.5.0",
"status": "affected",
"version": "1.5.0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2022-08-22 15:15:00
wpvulndb
wpvulndb
WP Edit Menu < 1.5.0 - Unauthenticated Arbitrary Post Deletion
2022-08-01 00:00:00
cve
cve
CVE-2022-2276
2022-08-22 15:15:14
nvd
nvd
CVE-2022-2276
2022-08-22 15:15:14
wpexploit
wpexploit
WP Edit Menu < 1.5.0 - Unauthenticated Arbitrary Post Deletion
2022-08-01 00:00:00