Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackKrzysztof ZającPATCHSTACK:3BFF90EAF633E487FA8956DB2E17F3A5
HistoryDec 06, 2021 - 12:00 a.m.

WordPress PublishPress Capabilities plugin <= 2.3 - Unauthenticated Settings Change vulnerability

2021-12-0600:00:00
Krzysztof Zając
patchstack.com
12

0.001 Low

EPSS

Percentile

45.7%

JSON

Unauthenticated Settings Change vulnerability discovered by Krzysztof Zając in WordPress PublishPress Capabilities plugin (versions <= 2.3).

Solution

           Update the WordPress PublishPress Capabilities plugin to the latest available version (at least 2.3.1).
CPENameOperatorVersion
publishpress capabilitiesle2.3

Related

wpexploit 1
nvd 1
cvelist 1
attackerkb 1
prion 1
wpvulndb 1
openvas 1
cve 1
githubexploit 1
wpexploit
wpexploit
PublishPress Capabilities < 2.3.1 - Unauthenticated Arbitrary Options Update to Blog Compromise
2021-12-08 00:00:00
nvd
nvd
CVE-2021-25032
2022-01-10 16:15:08
cvelist
cvelist
CVE-2021-25032 PublishPress Capabilities < 2.3.1 - Unauthenticated Arbitrary Options Update to Blog Compromise
2022-01-10 00:00:00
attackerkb
attackerkb
CVE-2021-25032
2022-01-10 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-01-10 16:15:00
wpvulndb
wpvulndb
PublishPress Capabilities < 2.3.1 - Unauthenticated Arbitrary Options Update to Blog Compromise
2021-12-08 00:00:00
openvas
openvas
WordPress PublishPress Capabilities Plugin < 2.3.1 Arbitrary Options Update Vulnerability
2022-01-18 00:00:00
cve
cve
CVE-2021-25032
2022-01-10 16:15:08
githubexploit
githubexploit
Exploit for Cross-Site Request Forgery (CSRF) in Publishpress Capabilities
2023-08-09 10:41:07

0.001 Low

EPSS

Percentile

45.7%

JSON
Related for PATCHSTACK:3BFF90EAF633E487FA8956DB2E17F3A5
wpexploit1nvd1cvelist1attackerkb1prion1wpvulndb1openvas1cve1githubexploit1