Product Slider for WooCommerce WordPress plugin has flawed CSRF checks and lacks authorization in AJAX actions, enabling unauthorized deletion of blog options
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
![]() | CVE-2022-2382 Product Slider for WooCommerce < 2.5.7 - Subscriber+ Arbitrary Options Deletion | 22 Aug 202215:02 | – | cvelist |
![]() | CVE-2022-2382 | 22 Aug 202215:15 | – | cve |
![]() | WordPress Product Slider for WooCommerce plugin <= 2.5.6 - Authenticated Arbitrary Options Deletion vulnerability | 26 Jul 202200:00 | – | patchstack |
![]() | Product Slider for WooCommerce < 2.5.7 - Subscriber+ Arbitrary Options Deletion | 26 Jul 202200:00 | – | wpvulndb |
![]() | Product Slider for WooCommerce < 2.5.7 - Subscriber+ Arbitrary Options Deletion | 26 Jul 202200:00 | – | wpexploit |
![]() | Cross site request forgery (csrf) | 22 Aug 202215:15 | – | prion |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo