Lucene search
HistoryNov 30, 2023 - 1:15 p.m.
CVE-2023-48744
cve-2023-48744
cross-site request forgery
offshore web master
availability calendar
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.1%
Cross-Site Request Forgery (CSRF) vulnerability in Offshore Web Master Availability Calendar allows Cross Site Request Forgery.This issue affects Availability Calendar: from n/a through 1.2.6.
Affected configurations
Node
offshorewebmasteravailability_calendarRange≤1.2.6wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| offshorewebmaster | availability_calendar | * | cpe:2.3:a:offshorewebmaster:availability_calendar:*:*:*:*:*:wordpress:*:* |
Related
cvelist
cvelist
wpvulndb
wpvulndb
prion
prion
Cross site request forgery (csrf)
2023-11-30 13:15:00
cve
cve
CVE-2023-48744
2023-11-30 13:15:09
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
24.1%
Related for NVD:CVE-2023-48744