Lucene search
PatchstackCVELIST:CVE-2023-51681HistoryFeb 28, 2024 - 4:41 p.m.
CVE-2023-51681 WordPress Duplicator Plugin <= 1.5.7 is vulnerable to Cross Site Request Forgery (CSRF)
2024-02-2816:41:37
CWE-352
Patchstack
www.cve.org
4
wordpress
duplicator
csrf
vulnerability
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Cross-Site Request Forgery (CSRF) vulnerability in Duplicator Duplicator – WordPress Migration & Backup Plugin.This issue affects Duplicator – WordPress Migration & Backup Plugin: from n/a through 1.5.7.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "duplicator",
"product": "Duplicator – WordPress Migration & Backup Plugin",
"vendor": "Duplicator",
"versions": [
{
"changes": [
{
"at": "1.5.7.1",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.5.7",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2024-02-28 17:15:00
vulnrichment
vulnrichment
wpvulndb
wpvulndb
Duplicator < 1.5.7.1 - Settings Removal via CSRF
2024-01-04 00:00:00
nvd
nvd
CVE-2023-51681
2024-02-28 17:15:07
cve
cve
CVE-2023-51681
2024-02-28 17:15:07
wordfence
wordfence
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2023-51681