CVE-2022-46846 WordPress Trending/Popular Post Slider and Widget plugin <= 1.5.7 - Broken Access Control vulnerability

🗓️ 13 Dec 2024 14:22:09Reported by PatchstackType

CVE-2022-46846 in WordPress plugin allows broken access control due to missing authorization issues.

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2022-46846	13 Dec 202415:14	–	circl
CNNVD	WordPress plugin Trending/Popular Post Slider and Widget 安全漏洞	9 Aug 202200:00	–	cnnvd
CVE	CVE-2022-46846	13 Dec 202414:22	–	cve
EUVD	EUVD-2022-49627	3 Oct 202520:07	–	euvd
NVD	CVE-2022-46846	13 Dec 202415:15	–	nvd
Patchstack	WordPress Trending/Popular Post Slider and Widget Plugin <= 1.5.7 is vulnerable to Broken Access Control	30 Mar 202300:00	–	patchstack
RedhatCVE	CVE-2022-46846	23 May 202501:07	–	redhatcve
Vulnrichment	CVE-2022-46846 WordPress Trending/Popular Post Slider and Widget plugin <= 1.5.7 - Broken Access Control vulnerability	13 Dec 202414:22	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (Mar 27, 2023 to Apr 2, 2023)	6 Apr 202314:26	–	wordfence

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "wp-trending-post-slider-and-widget",
    "product": "Trending/Popular Post Slider and Widget",
    "vendor": "WP OnlineSupport, Essential Plugin",
    "versions": [
      {
        "changes": [
          {
            "at": "1.5.8",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "1.5.7",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/wordpress/plugin/wp-trending-post-slider-and-widget/vulnerability/wordpress-trending-popular-post-slider-and-widget-plugin-1-5-7-broken-access-control-vulnerability

28 Apr 2026 16:07Current

CVSS 3.15.3

EPSS0.00149

CWE-862

cve-2022-46846 broken access control wordpress plugin