Lucene search
PatchstackCVELIST:CVE-2022-29495HistoryJun 30, 2022 - 12:00 a.m.
CVE-2022-29495 WordPress Popup Builder plugin <= 4.1.11 - Cross-Site Request Forgery (CSRF) leading to plugin settings update
2022-06-3000:00:00
CWE-352
Patchstack
www.cve.org
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.0%
Cross-Site Request Forgery (CSRF) vulnerability in Sygnoos Popup Builder plugin <= 4.1.11 at WordPress allows an attacker to update plugin settings.
CNA Affected
[
{
"product": "Popup Builder (WordPress plugin)",
"vendor": "Sygnoos",
"versions": [
{
"lessThanOrEqual": "4.1.11",
"status": "affected",
"version": "<= 4.1.11",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Popup Builder < 4.1.12 - Settings Update via CSRF
2022-06-30 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-07-22 17:15:00
cnvd
cnvd
WordPress Sygnoos Popup Builder Cross-Site Request Forgery Vulnerability
2022-07-26 00:00:00
nvd
nvd
CVE-2022-29495
2022-07-22 17:15:08
cve
cve
CVE-2022-29495
2022-07-22 17:15:08
patchstack
patchstack
openvas
openvas
WordPress Popup Builder Plugin <= 4.1.11 CSRF Vulnerability
2022-07-27 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.0%
Related for CVELIST:CVE-2022-29495