Lucene search

[email protected]NVD:CVE-2022-47605

HistoryApr 12, 2023 - 3:15 p.m.

CVE-2022-47605

2023-04-1215:15:11

CWE-89

[email protected]

web.nvd.nist.gov

cve-2022-47605

kunal nagar

custom 404 pro

authenticated

sql injection

vulnerability

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

24.4%

JSON

Auth. SQL Injection’) vulnerability in Kunal Nagar Custom 404 Pro plugin <= 3.7.0 versions.

Affected configurations

Nvd

Node

kunalnagarcustom_404_proRange≤3.7.0wordpress

VendorProductVersionCPE
kunalnagarcustom_404_pro*cpe:2.3:a:kunalnagar:custom_404_pro:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
kunalnagar	custom_404_pro	*	cpe:2.3:a:kunalnagar:custom_404_pro::::::wordpress::*

References

patchstack.com/database/vulnerability/custom-404-pro/wordpress-custom-404-pro-plugin-3-7-0-admin-sql-injection-vulnerability?_s_id=cve

CVSS3

7.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

24.4%

JSON

Related for NVD:CVE-2022-47605

prion1 cvelist1 cve1