EUVD-2022-52146

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Multiple WordPress plugins have CSRF vulnerabilities allowing attackers to exploit logged-in users.

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2022-4888	31 Jul 202314:37	–	circl
CNNVD	WordPress plugin 跨站请求伪造漏洞	12 Apr 202200:00	–	cnnvd
CVE	CVE-2022-4888	31 Jul 202309:37	–	cve
Cvelist	CVE-2022-4888 Multiple Plugins from Addify - Multiple CSRF	31 Jul 202309:37	–	cvelist
NVD	CVE-2022-4888	31 Jul 202310:15	–	nvd
OSV	CVE-2022-4888	31 Jul 202310:15	–	osv
Prion	Cross site request forgery (csrf)	31 Jul 202310:15	–	prion
Positive Technologies	PT-2023-15899 · WordPress · Checkout Fields Manager +12	31 Jul 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-4888	23 May 202500:32	–	redhatcve
Vulnrichment	CVE-2022-4888 Multiple Plugins from Addify - Multiple CSRF	31 Jul 202309:37	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "8770cf0d-2684-32bc-a8df-7ee08317cc8e",
        "vendor": {
          "name": "Unknown"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "06654b58-576f-3e7c-9329-9921e520ca85",
        "product": {
          "name": "Advanced Free Gifts"
        },
        "product_version": "0 <1.0.2"
      },
      {
        "id": "1145a9dd-1252-3d43-a691-58400f9c7270",
        "product": {
          "name": "Custom Registration Forms Builder"
        },
        "product_version": "0 <1.0.2"
      },
      {
        "id": "1df2b634-9d87-3213-85d5-7723f36dbfec",
        "product": {
          "name": "Product Labels and Stickers"
        },
        "product_version": "0 ≤1.0.1"
      },
      {
        "id": "4bccb51d-26d8-34d7-b3d0-9f4517990b83",
        "product": {
          "name": "Order Tracking for WooCommerce"
        },
        "product_version": "0 <1.0.2"
      },
      {
        "id": "5ec55dcb-7ba9-3e7a-8d6a-38242101575e",
        "product": {
          "name": "Image Watermark for WooCommerce"
        },
        "product_version": "0 <1.0.1"
      },
      {
        "id": "61f84690-112c-30a5-9b99-92e77ded63bc",
        "product": {
          "name": "Checkout Fields Manager"
        },
        "product_version": "0 <1.0.2"
      },
      {
        "id": "7cadb7cc-debe-3c9b-af74-f68fe4f1e961",
        "product": {
          "name": "Abandoned Cart Recovery"
        },
        "product_version": "0 <1.2.5"
      },
      {
        "id": "848e2d22-5c7e-3770-9218-7e2d689fe229",
        "product": {
          "name": "Custom Order Number"
        },
        "product_version": "0 ≤1.0.1"
      },
      {
        "id": "a33e2989-f8a2-3df8-a418-652c61dbfff8",
        "product": {
          "name": "Order Approval for WooCommerce"
        },
        "product_version": "0 <1.1.0"
      },
      {
        "id": "b789376b-a911-35d2-ae36-38872f9bf37c",
        "product": {
          "name": "Product Dynamic Pricing and Discounts"
        },
        "product_version": "0 ≤1.0.6"
      },
      {
        "id": "c36de299-94c0-37b2-880f-510befa15bb1",
        "product": {
          "name": "Gift Registry for WooCommerce"
        },
        "product_version": "0 ≤1.0.1"
      },
      {
        "id": "c5be7579-726d-3f35-95c3-27d0c9e0ad53",
        "product": {
          "name": "Price Calculator for WooCommerce"
        },
        "product_version": "0 ≤1.0.3"
      },
      {
        "id": "dc4a328a-0b0b-3f14-b1ca-3fea2e3592da",
        "product": {
          "name": "Custom Fields for WooCommerce"
        },
        "product_version": "0 <1.0.4"
      }
    ]
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/2c2379d0-e373-4587-a747-429d7ee8f6cc

03 Oct 2025 20:07Current

7High risk

Vulners AI Score7

CVSS 3.16.5

EPSS0.00363

SSVC