Lucene search
PatchstackCVELIST:CVE-2022-38093HistorySep 05, 2022 - 12:00 a.m.
CVE-2022-38093 WordPress All in One SEO plugin <= 4.2.3.1 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
2022-09-0500:00:00
CWE-352
Patchstack
www.cve.org
cve-2022-38093
wordpress
all in one seo plugin
csrf
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.5%
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in All in One SEO plugin <= 4.2.3.1 at WordPress.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "all-in-one-seo-pack",
"product": "All in One SEO (WordPress plugin)",
"vendor": "All in One SEO Team",
"versions": [
{
"changes": [
{
"at": "4.2.4",
"status": "unaffected"
}
],
"lessThanOrEqual": "4.2.3.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
openvas
openvas
WordPress All in One SEO Pack Plugin < 4.2.4 CSRF Vulnerability
2022-09-12 00:00:00
wpvulndb
wpvulndb
All in One SEO < 4.2.4 - Multiple CSRF
2022-09-05 00:00:00
patchstack
patchstack
nvd
nvd
CVE-2022-38093
2022-09-09 15:15:14
cve
cve
CVE-2022-38093
2022-09-09 15:15:14
prion
prion
Cross site request forgery (csrf)
2022-09-09 15:15:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.5%
Related for CVELIST:CVE-2022-38093