Lucene search

[email protected]NVD:CVE-2022-40310

HistorySep 23, 2022 - 3:15 p.m.

CVE-2022-40310

2022-09-2315:15:14

CWE-362

[email protected]

web.nvd.nist.gov

cve-2022-40310

wordpress

rate my post

wp rating system

authenticated

race condition

vulnerability

increase/decrease votes

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

22.9%

JSON

Authenticated (subscriber+) Race Condition vulnerability in Rate my Post – WP Rating System plugin <= 3.3.4 at WordPress allows attackers to increase/decrease votes.

Affected configurations

NVD

Node

blazzdevrate_my_post_-_wp_rating_systemRange≤3.3.4wordpress

References

patchstack.com/database/vulnerability/rate-my-post/wordpress-rate-my-post-wp-rating-system-plugin-3-3-4-race-condition-vulnerability/_s_id=cve

wordpress.org/plugins/rate-my-post/#developers

3.1 Low

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

0.001 Low

EPSS

Percentile

22.9%

JSON

Related for NVD:CVE-2022-40310

patchstack1 cvelist1 wpvulndb1 prion1 cve1