Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackBEE-K (Patchstack)PATCHSTACK:258A6D202341FDB71A20392C3B959E30
HistoryMay 26, 2022 - 12:00 a.m.

WordPress Private Messages For WordPress plugin <= 2.1.10 - Sending Messages via Cross-Site Request Forgery (CSRF) vulnerability

2022-05-2600:00:00
BEE-K (Patchstack)
patchstack.com
8

0.001 Low

EPSS

Percentile

20.8%

JSON

Sending Messages via Cross-Site Request Forgery (CSRF) vulnerability discovered by BEE-K (Patchstack) in WordPress Private Messages For WordPress plugin (versions <= 2.1.10).

Solution

Deactivate and delete. This plugin has been closed as of May 20, 2022 and is not available for download. This closure is temporary, pending a full review.

CPENameOperatorVersion
private messages for wordpressle2.1.10

Related

cnvd 1
cvelist 1
cve 1
prion 1
wpvulndb 1
nvd 1
cnvd
cnvd
WordPress Private Messages plugin跨站请求伪造漏洞
2022-06-17 00:00:00
cvelist
cvelist
CVE-2022-29441 WordPress Private Messages For WordPress plugin <= 2.1.10 - Sending Messages via Cross-Site Request Forgery (CSRF) vulnerability
2022-05-26 00:00:00
cve
cve
CVE-2022-29441
2022-06-15 16:15:08
prion
prion
Cross site request forgery (csrf)
2022-06-15 16:15:00
wpvulndb
wpvulndb
Private Messages For WordPress <= 2.1.10 - Arbitrary Message Sent via CSRF
2022-05-25 00:00:00
nvd
nvd
CVE-2022-29441
2022-06-15 16:15:08

0.001 Low

EPSS

Percentile

20.8%

JSON
Related for PATCHSTACK:258A6D202341FDB71A20392C3B959E30
cnvd1cvelist1cve1prion1wpvulndb1nvd1