3 matches found
CVE-2022-2245
creationtimestamp| type| source ---|---|--- 2022-08-01 16:16:48+00:00| seen| https://t.me/cibsecurity/47311...
CVE-2022-2245 Counter Box < 1.2.1 - Arbitrary Counter Activation/Deactivation via CSRF
The Counter Box WordPress plugin before 1.2.1 is lacking CSRF check when activating and deactivating counters, which could allow attackers to make a logged in admin perform such actions via CSRF attacks...
CVE-2022-2245
The CVE-2022-2245 entry concerns the Counter Box WordPress plugin prior to 1.2.1, which is vulnerable to CSRF in activation/deactivation of counters. The underlying issue is lack of CSRF checks for those actions, potentially allowing a logged-in attacker to induce an admin to perform activate/dea...