Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:55 a.m.7 views

CVE-2022-43490

Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...

8.8CVSS7.1AI score0.00264EPSS
Exploits0References1
OSV
OSV
added 2023/05/25 11:15 a.m.4 views

CVE-2022-43490

Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...

8.8CVSS5.8AI score0.00264EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/25 10:17 a.m.11 views

CVE-2022-43490 WordPress Stream Plugin <= 3.9.2 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...

5.4CVSS7AI score0.00264EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/25 10:17 a.m.20 views

CVE-2022-43490 WordPress Stream Plugin <= 3.9.2 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...

5.4CVSS9AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2023/05/25 10:17 a.m.61 views

CVE-2022-43490

CVE-2022-43490 affects the WordPress Stream plugin prior to version 3.9.3, with CSRF vulnerability allowing unauthenticated actions. According to Patchstack and Red Hat/NVD entries, the issue is fixed in 3.9.3; CVSS v3.1 base score 8.8 (HIGH) on NVD and 5.4 (MEDIUM) on Patchstack, depending on ve...

8.8CVSS7.1AI score0.00264EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/04/18 12:0 a.m.14 views

WordPress Stream Plugin <= 3.9.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Stream Type Plugin Vulnerable versions = 3.9.2 Fixed in 3.9.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-43490 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID deaa1ceaba9b Credits Lucio Sá Required privilege...

8.8CVSS7AI score0.00264EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder