Lucene search
Rasi Afeef (Patchstack Alliance)PATCHSTACK:1C61E64D4B0A8E30AB6AF8624E96C45DHistoryOct 24, 2022 - 12:00 a.m.
WordPress Auto Upload Images plugin <= 3.3 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS)
2022-10-2400:00:00
Rasi Afeef (Patchstack Alliance)
patchstack.com
8
wordpress
auto upload images
csrf
stored xss
patchstack alliance
vendor
vulnerability
EPSS
0.001
Percentile
16.6%
Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by Rasi (Patchstack Alliance) in the WordPress Auto Upload Images plugin (versions <= 3.3).
Solution
No patched version is available. No reply from the vendor.
Related
cve
cve
CVE-2022-42880
2023-06-13 15:15:11
prion
prion
Cross site request forgery (csrf)
2023-06-13 15:15:00
osv
osv
CVE-2022-42880
2023-06-13 15:15:11
cvelist
cvelist
nvd
nvd
CVE-2022-42880
2023-06-13 15:15:11