6 matches found
CVE-2022-43490
Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...
CVE-2022-43490
Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...
CVE-2022-43490 WordPress Stream Plugin <= 3.9.2 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...
CVE-2022-43490 WordPress Stream Plugin <= 3.9.2 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF vulnerability in XWP Stream plugin = 3.9.2 versions...
CVE-2022-43490
CVE-2022-43490 affects the WordPress Stream plugin prior to version 3.9.3, with CSRF vulnerability allowing unauthenticated actions. According to Patchstack and Red Hat/NVD entries, the issue is fixed in 3.9.3; CVSS v3.1 base score 8.8 (HIGH) on NVD and 5.4 (MEDIUM) on Patchstack, depending on ve...
WordPress Stream Plugin <= 3.9.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software Stream Type Plugin Vulnerable versions = 3.9.2 Fixed in 3.9.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-43490 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID deaa1ceaba9b Credits Lucio Sá Required privilege...