Lucene search
HistoryNov 28, 2022 - 8:15 p.m.
CVE-2022-34654
cve-2022-34654
cross-site request forgery
virgial berveling
manage notification e-mails plugin
wordpress
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
32.3%
Cross-Site Request Forgery (CSRF) in Virgial BervelingβsΒ Manage Notification E-mails plugin <=Β 1.8.2Β on WordPress.
Affected configurations
Node
freeamigosmanage_notification_e-mailsRange<1.8.3wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| freeamigos | manage_notification_e-mails | * | cpe:2.3:a:freeamigos:manage_notification_e-mails:*:*:*:*:*:wordpress:*:* |
Related
patchstack
patchstack
wpvulndb
wpvulndb
Manage Notification E-mails < 1.8.3 - Settings Reset via CSRF
2022-09-27 00:00:00
Manage Notification E-mails < 1.8.3 - Settings Reset via CSRF
2022-11-28 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-11-28 20:15:00
cvelist
cvelist
cve
cve
CVE-2022-34654
2022-11-28 20:15:16
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
32.3%
Related for NVD:CVE-2022-34654