Lucene search
PatchstackCVELIST:CVE-2023-44478HistoryMay 17, 2024 - 8:28 a.m.
CVE-2023-44478 WordPress Events Rich Snippets for Google plugin <= 1.8 - CSRF Leading to Privilege Escalation vulnerability
2024-05-1708:28:33
CWE-352
Patchstack
www.cve.org
cve-2023-44478
cross-site request forgery
privilege escalation
wp hive events rich snippets for google
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L
0.0004 Low
EPSS
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in WP Hive Events Rich Snippets for Google allows Exploitation of Trusted Credentials.This issue affects Events Rich Snippets for Google: from n/a through 1.8.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "rich-snippets-vevents",
"product": "Events Rich Snippets for Google",
"vendor": "WP Hive",
"versions": [
{
"lessThanOrEqual": "1.8",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
cve
cve
CVE-2023-44478
2024-05-17 09:15:07
nvd
nvd
CVE-2023-44478
2024-05-17 09:15:07
vulnrichment
vulnrichment
wordfence
wordfence
7.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L
0.0004 Low
EPSS
Percentile
9.0%
Related for CVELIST:CVE-2023-44478