Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistWPScanCVELIST:CVE-2022-2389
HistoryAug 22, 2022 - 3:02 p.m.

CVE-2022-2389 Automations By Autonami < 2.1.2 - Subscriber+ Automation Creation

2022-08-2215:02:49
CWE-862
CWE-352
WPScan
raw.githubusercontent.com
2

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.4%

JSON

The Abandoned Cart Recovery for WooCommerce, Follow Up Emails, Newsletter Builder & Marketing Automation By Autonami WordPress plugin before 2.1.2 does not have authorisation and CSRF checks in one of its AJAX action, allowing any authenticated users, such as subscriber to create automations

Related

prion 1
cve 1
wpexploit 1
wpvulndb 1
patchstack 1
prion
prion
Cross site request forgery (csrf)
2022-08-22 15:15:00
cve
cve
CVE-2022-2389
2022-08-22 15:15:14
wpexploit
wpexploit
Automations By Autonami < 2.1.2 - Subscriber+ Automation Creation
2022-07-26 00:00:00
wpvulndb
wpvulndb
Automations By Autonami < 2.1.2 - Subscriber+ Automation Creation
2022-07-26 00:00:00
patchstack
patchstack
WordPress Automations By Autonami plugin <= 2.1.1 - Automation Creation vulnerability
2022-07-26 00:00:00

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

20.4%

JSON
Related for CVELIST:CVE-2022-2389
prion1cve1wpexploit1wpvulndb1patchstack1