Lucene search
PatchstackCVELIST:CVE-2022-44737HistoryNov 22, 2022 - 4:00 p.m.
CVE-2022-44737 WordPress All In One WP Security plugin <= 5.1.0 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
2022-11-2216:00:10
CWE-352
Patchstack
www.cve.org
3
wordpress
security plugin
csrf
vulnerabilities
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
32.3%
Multiple Cross-Site Request Forgery vulnerabilities in All-In-One Security (AIOS) – Security and Firewall (WordPress plugin) <= 5.1.0 on WordPress.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "All-In-One Security (AIOS) – Security and Firewall (WordPress plugin)",
"vendor": "All In One WP Security & Firewall Team",
"versions": [
{
"changes": [
{
"at": "5.1.1",
"status": "unaffected"
}
],
"lessThanOrEqual": "5.1.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cnvd
cnvd
prion
prion
Cross site request forgery (csrf)
2022-11-22 16:15:00
patchstack
patchstack
wpvulndb
wpvulndb
All-In-One Security < 5.1.1 - Bulk Actions via CSRF
2022-11-22 00:00:00
openvas
openvas
nvd
nvd
CVE-2022-44737
2022-11-22 16:15:11
cve
cve
CVE-2022-44737
2022-11-22 16:15:11
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
9.2
Confidence
High
EPSS
0.001
Percentile
32.3%
Related for CVELIST:CVE-2022-44737