Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackMuhammad Daffa (Patchstack Alliance)PATCHSTACK:29893388B5EA8B55E83E87C5353BBC23
HistoryOct 30, 2022 - 12:00 a.m.

WordPress Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.5 - Cross-Site Request Forgery (CSRF) vulnerability

2022-10-3000:00:00
Muhammad Daffa (Patchstack Alliance)
patchstack.com
12
wordpress
woocommerce
dynamic pricing
cross-site request forgery
csrf
vulnerability
patchstack alliance
update

EPSS

0.001

Percentile

20.9%

JSON

Cross-Site Request Forgery (CSRF) vulnerability leading to Plugin Settings Import was discovered by Muhammad Daffa (Patchstack Alliance) in WordPress Advanced Dynamic Pricing for WooCommerce plugin (versions <= 4.1.5).

Solution

           Update the WordPress Advanced Dynamic Pricing for WooCommerce plugin to the latest available version (at least 4.1.6).

Related

cve 1
wpvulndb 1
nvd 1
prion 1
cvelist 1
cve
cve
CVE-2022-43491
2022-11-08 19:15:17
wpvulndb
wpvulndb
Advanced Dynamic Pricing for WooCommerce < 4.1.6 - Settings Import via CSRF
2022-10-30 00:00:00
nvd
nvd
CVE-2022-43491
2022-11-08 19:15:17
prion
prion
Cross site request forgery (csrf)
2022-11-08 19:15:00
cvelist
cvelist
CVE-2022-43491 WordPress Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.5 - Cross-Site Request Forgery (CSRF) vulnerability
2022-11-08 18:12:18

EPSS

0.001

Percentile

20.9%

JSON
Related for PATCHSTACK:29893388B5EA8B55E83E87C5353BBC23
cve1wpvulndb1nvd1prion1cvelist1