Lucene search
PatchstackCVELIST:CVE-2022-38454HistorySep 23, 2022 - 12:00 a.m.
CVE-2022-38454 WordPress Kraken.io Image Optimizer plugin <= 2.6.5 - Cross-Site Request Forgery (CSRF) vulnerability
2022-09-2300:00:00
CWE-352
Patchstack
www.cve.org
wordpress
kraken.io
csrf
vulnerability
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.6%
Cross-Site Request Forgery (CSRF) vulnerability in Kraken.io Image Optimizer plugin <= 2.6.5 at WordPress.
CNA Affected
[
{
"product": "Kraken.io Image Optimizer (WordPress plugin)",
"vendor": "Karim Salman",
"versions": [
{
"lessThanOrEqual": "2.6.5",
"status": "affected",
"version": "<= 2.6.5",
"versionType": "custom"
}
]
}
]Related
patchstack
patchstack
cnvd
cnvd
WordPress Kraken.io Image Optimizer Cross-Site Request Forgery Vulnerability
2022-09-28 00:00:00
wpvulndb
wpvulndb
Kraken.io Image Optimizer < 2.6.6 - Settings Update via CSRF
2022-09-23 00:00:00
cve
cve
CVE-2022-38454
2022-09-23 19:15:14
nvd
nvd
CVE-2022-38454
2022-09-23 19:15:14
prion
prion
Cross site request forgery (csrf)
2022-09-23 19:15:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
39.6%
Related for CVELIST:CVE-2022-38454