Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackPtsfence (Patchstack Alliance)PATCHSTACK:40993ADF1D64FDB0DF5C6AA874FDB9B8
HistoryAug 25, 2022 - 12:00 a.m.

WordPress About Rentals plugin <= 1.5 - Missing Access Control vulnerability

2022-08-2500:00:00
ptsfence (Patchstack Alliance)
patchstack.com
9

0.002 Low

EPSS

Percentile

57.8%

JSON

Missing Access Control vulnerability leading to Unauthenticated Stored (XSS) and plugin settings change discovered by ptsfence in WordPress About Rentals plugin (versions <= 1.5).

Solution

Deactivate and delete. This plugin has been closed as of August 24, 2022 and is not available for download. This closure is temporary, pending a full review.

CPENameOperatorVersion
about rentalsle1.5

Related

nvd 1
cve 1
wpvulndb 1
cvelist 1
prion 1
nvd
nvd
CVE-2022-36427
2022-09-06 23:15:08
cve
cve
CVE-2022-36427
2022-09-06 23:15:08
wpvulndb
wpvulndb
About Rentals <= 1.5 - Unauthenticated Actions
2022-08-25 00:00:00
cvelist
cvelist
CVE-2022-36427 WordPress About Rentals plugin <= 1.5 - Missing Access Control vulnerability
2022-08-25 00:00:00
prion
prion
Improper access control
2022-09-06 23:15:00

0.002 Low

EPSS

Percentile

57.8%

JSON
Related for PATCHSTACK:40993ADF1D64FDB0DF5C6AA874FDB9B8
nvd1cve1wpvulndb1cvelist1prion1