Lucene search
PRIOn knowledge basePRION:CVE-2022-1885HistoryJun 27, 2022 - 9:15 a.m.
Cross site request forgery (csrf)
2022-06-2709:15:00
PRIOn knowledge base
www.prio-n.com
6
The Cimy Header Image Rotator WordPress plugin through 6.1.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
| CPE | Name | Operator | Version |
|---|---|---|---|
| cimy_header_image_rotator | le | 6.1.1 |
Related
cvelist
cvelist
nvd
nvd
CVE-2022-1885
2022-06-27 09:15:10
cnvd
cnvd
WordPress Cimy Header Image Rotator plugin跨站请求伪造漏洞
2022-06-30 00:00:00
wpexploit
wpexploit
Cimy Header Image Rotator <= 6.1.1 - Arbitrary Settings Update via CSRF
2022-06-01 00:00:00
wpvulndb
wpvulndb
Cimy Header Image Rotator <= 6.1.1 - Arbitrary Settings Update via CSRF
2022-06-01 00:00:00
cve
cve
CVE-2022-1885
2022-06-27 09:15:10