3 matches found
CVE-2022-36379
creationtimestamp| type| source ---|---|--- 2022-08-23 20:27:44+00:00| seen| https://t.me/cibsecurity/48612...
CVE-2022-36379 WordPress ЮKassa для WooCommerce plugin <= 2.3.0 - Cross-Site Request Forgery (CSRF) leading to plugin settings update
Cross-Site Request Forgery CSRF leading to plugin settings update in YooMoney ЮKassa для WooCommerce plugin = 2.3.0 at WordPress...
CVE-2022-36379
CVE-2022-36379 concerns the WordPress plugin YooMoney ЮKassa для WooCommerce, vulnerable to Cross-Site Request Forgery (CSRF) that can lead to unauthorized plugin settings updates. Affected versions: 2.3.0 and earlier. Root cause: CSRF flaw allowing unauthorized changes to plugin configuration. I...