Lucene search
PatchstackCVELIST:CVE-2022-27846HistoryApr 13, 2022 - 5:05 p.m.
CVE-2022-27846 WordPress Yoo Slider plugin <= 2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to Slider Creation / Modification
2022-04-1317:05:53
CWE-352
Patchstack
www.cve.org
3
wordpress
yoo slider
csrf
vulnerability
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5
Confidence
High
EPSS
0.001
Percentile
20.9%
Cross-Site Request Forgery (CSRF) vulnerability in Yooslider Yoo Slider <= 2.0.0 on WordPress allows attackers to create or modify slider.
CNA Affected
[
{
"product": "Yoo Slider – Image Slider & Video Slider (WordPress plugin)",
"vendor": "Yooslider",
"versions": [
{
"lessThanOrEqual": "2.0.0",
"status": "affected",
"version": "<= 2.0.0",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2022-04-13 18:15:00
patchstack
patchstack
nvd
nvd
CVE-2022-27846
2022-04-13 18:15:15
cve
cve
CVE-2022-27846
2022-04-13 18:15:15
cnvd
cnvd
wpvulndb
wpvulndb
Yoo Slider < 2.1.0 - Arbitrary Slider Creation/Edition via CSRF
2022-04-11 00:00:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
5
Confidence
High
EPSS
0.001
Percentile
20.9%
Related for CVELIST:CVE-2022-27846