Lucene search
PatchstackCVELIST:CVE-2022-34347HistoryAug 02, 2022 - 12:00 a.m.
CVE-2022-34347 WordPress Download Manager plugin <= 3.2.48 - Cross-Site Request Forgery (CSRF) vulnerability
2022-08-0200:00:00
CWE-352
Patchstack
www.cve.org
wordpress
download manager
csrf
vulnerability
w3 eden
4.2 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L
9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
41.8%
Cross-Site Request Forgery (CSRF) vulnerability in W3 Eden Download Manager plugin <= 3.2.48 at WordPress.
CNA Affected
[
{
"product": "Download Manager (WordPress plugin)",
"vendor": "W3 Eden, Inc.",
"versions": [
{
"lessThanOrEqual": "3.2.48",
"status": "affected",
"version": "<= 3.2.48",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2022-34347
2022-08-22 15:15:16
nvd
nvd
CVE-2022-34347
2022-08-22 15:15:16
prion
prion
Cross site request forgery (csrf)
2022-08-22 15:15:00
wpvulndb
wpvulndb
Download Manager < 3.2.49 - Clear Stats & Cache via CSRF
2022-08-02 00:00:00
patchstack
patchstack
4.2 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:L
9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
41.8%
Related for CVELIST:CVE-2022-34347