Lucene search

PatchstackCVELIST:CVE-2023-52184

HistoryJan 05, 2024 - 8:00 a.m.

CVE-2023-52184 WordPress WP Job Portal Plugin <= 2.0.6 is vulnerable to Cross Site Request Forgery (CSRF)

2024-01-0508:00:03

CWE-352

Patchstack

www.cve.org

cve-2023-52184

wordpress

cross site request forgery

wp job portal

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.2%

JSON

Cross-Site Request Forgery (CSRF) vulnerability in WP Job Portal WP Job Portal – A Complete Job Board.This issue affects WP Job Portal – A Complete Job Board: from n/a through 2.0.6.

CNA Affected

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "wp-job-portal",
    "product": "WP Job Portal – A Complete Job Board",
    "vendor": "WP Job Portal",
    "versions": [
      {
        "changes": [
          {
            "at": "2.0.7",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.0.6",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

References

patchstack.com/database/vulnerability/wp-job-portal/wordpress-wp-job-portal-plugin-2-0-6-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

8.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.2%

JSON

Related for CVELIST:CVE-2023-52184