Lucene search
HistoryNov 18, 2023 - 10:15 p.m.
CVE-2023-47556
cross-site request forgery
james mehorter
device theme switcher
vulnerability
version 3.0.2
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.1%
Cross-Site Request Forgery (CSRF) vulnerability in James Mehorter Device Theme Switcher.This issue affects Device Theme Switcher: from n/a through 3.0.2.
Affected configurations
Node
jamesmehorterdevice_theme_switcherRange≤3.0.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jamesmehorter | device_theme_switcher | * | cpe:2.3:a:jamesmehorter:device_theme_switcher:*:*:*:*:*:wordpress:*:* |
Related
cve
cve
CVE-2023-47556
2023-11-18 22:15:08
prion
prion
Cross site request forgery (csrf)
2023-11-18 22:15:00
vulnrichment
vulnrichment
wpvulndb
wpvulndb
Plugin Name: Device Theme Switcher <= 3.0.2 - Cross-Site Request Forgery
2023-11-23 00:00:00
cvelist
cvelist
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.1%
Related for NVD:CVE-2023-47556