Lucene search
PatchstackCVELIST:CVE-2022-29431HistoryMay 20, 2022 - 8:47 p.m.
CVE-2022-29431 Remove CPT base <= 5.8 - CSRF leads to CPT base deletion
2022-05-2020:47:12
CWE-352
Patchstack
www.cve.org
3
cve-2022-29431
csrf
kubiq cpt base plugin
cpt base deletion
wordpress
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.001
Percentile
20.8%
Cross-Site Request Forgery (CSRF) vulnerability in KubiQ CPT base plugin <= 5.8 at WordPress allows an attacker to delete the CPT base.
CNA Affected
[
{
"product": "Remove CPT base (WordPress plugin)",
"vendor": "KubiQ",
"versions": [
{
"lessThanOrEqual": "5.8",
"status": "affected",
"version": "<= 5.8",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Remove CPT Base < 5.9 - CPT Deletion via CSRF
2022-05-06 00:00:00
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-05-20 21:15:00
cve
cve
CVE-2022-29431
2022-05-20 21:15:10
nvd
nvd
CVE-2022-29431
2022-05-20 21:15:10
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.001
Percentile
20.8%
Related for CVELIST:CVE-2022-29431