Lucene search
Dave Jong (Patchstack)PATCHSTACK:89C054953D955419293EC0BBC88DE7ABHistoryOct 02, 2022 - 12:00 a.m.
WordPress Shortcodes Ultimate plugin <= 5.12.0 - Cross-Site Request Forgery (CSRF) vulnerability
2022-10-0200:00:00
Dave Jong (Patchstack)
patchstack.com
31
0.001 Low
EPSS
Percentile
21.0%
Cross-Site Request Forgery (CSRF) vulnerability leading to Preset Settings Change discovered by Dave Jong (Patchstack) in WordPress Shortcodes Ultimate plugin (versions <= 5.12.0).
Solution
Update the WordPress Shortcodes Ultimate plugin to the latest available version (at least 5.12.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| shortcodes ultimate | le | 5.12.0 |
Related
prion
prion
Cross site request forgery (csrf)
2022-10-11 20:15:00
cve
cve
CVE-2022-38086
2022-10-11 20:15:15
cvelist
cvelist
wpvulndb
wpvulndb
Shortcodes Ultimate < 5.12.1 - Settings Preset Update via CSRF
2022-10-02 00:00:00
nvd
nvd
CVE-2022-38086
2022-10-11 20:15:15
openvas
openvas
WordPress Shortcodes Ultimate Plugin < 5.12.1 Multiple CSRF Vulnerabilities
2022-11-10 00:00:00