CVE-2022-4305

🗓️ 23 Jan 2023 15:14:15Reported by [email protected]Type

Login as User or Customer WordPress plugin lacks authorization checks, allowing unauthenticated attackers to obtain a valid admin sessio

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
WPVulnDB	Login as User or Customer < 3.3 - Unauthenticated Privilege Escalation to Admin	27 Dec 202200:00	–	wpvulndb
wpexploit	Login as User or Customer < 3.3 - Unauthenticated Privilege Escalation to Admin	27 Dec 202200:00	–	wpexploit
Vulnrichment	CVE-2022-4305 Login as User or Customer < 3.3 - Unauthenticated Privilege Escalation to Admin	23 Jan 202314:31	–	vulnrichment
CVE	CVE-2022-4305	23 Jan 202315:15	–	cve
Nuclei	Login as User or Customer < 3.3 - Privilege Escalation	17 Oct 202307:20	–	nuclei
Prion	Authorization	23 Jan 202315:15	–	prion
Cvelist	CVE-2022-4305 Login as User or Customer < 3.3 - Unauthenticated Privilege Escalation to Admin	23 Jan 202314:31	–	cvelist

Nvd

Node

wp-buy login_as_user_or_customer_(user_switching)Range<3.3wordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/286d972d-7bda-455c-a226-fd9ce5f925bd

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Jan 2023 15:15Current

9.4High risk

Vulners AI Score9.4

CVSS39.8

EPSS0.88987