Lucene search

WordPress Private Files plugin <= 0.40 - Protection Disabling via Cross-Site Request Forgery (CSRF) vulnerability

🗓️ 23 May 2022 00:00:00Reported by Daniel RufType

WordPress Private Files plugin <= 0.40 - CSRF Protection Disablin

Reporter	Title	Published	Views	Family All 7
CVE	CVE-2022-1793	13 Jun 202213:15	–	cve
WPVulnDB	Private Files <= 0.40 - Protection Disabling via CSRF	23 May 202200:00	–	wpvulndb
Prion	Cross site request forgery (csrf)	13 Jun 202213:15	–	prion
Cvelist	CVE-2022-1793 Private Files <= 0.40 - Protection Disabling via CSRF	13 Jun 202212:43	–	cvelist
NVD	CVE-2022-1793	13 Jun 202213:15	–	nvd
wpexploit	Private Files <= 0.40 - Protection Disabling via CSRF	23 May 202200:00	–	wpexploit
CNVD	WordPress Private Files plugin cross-site request forgery vulnerability	15 Jun 202200:00	–	cnvd

Vulners

Node

private_files_project private_filesRange≤0.40wordpress

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
wpscan	www.wpscan.com/vulnerability/fd8b84b4-6944-4638-bdc1-1cb6aaabd42c
wordpress	www.wordpress.org/plugins/private-files/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 May 2022 00:00Current

4.1Medium risk

Vulners AI Score4.1

EPSS0.001