Lucene search
+L

7 matches found

ATTACKERKB
ATTACKERKB
added 2025/02/11 12:0 a.m.448 views

CVE-2022-3180

The WPGateway Plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.5. This allows unauthenticated attackers to create arbitrary malicious administrator accounts. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker...

9.8CVSS9.6AI score0.08762EPSS
In wildExploits2References3
Check Point Advisories
Check Point Advisories
added 2022/09/18 12:0 a.m.56 views

WordPress WPGateway Plugin Privilege Escalation (CVE-2022-3180)

A privilege escalation exists in WordPress WPGateway Plugin. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

5.4AI score0.08762EPSS
Exploits2
0day.today
0day.today
added 2022/09/15 12:0 a.m.426 views

WordPress WPGateway 3.5 Privilege Escalation Vulnerability

Description: Unauthenticated Privilege Escalation Affected Plugin: WPGateway Plugin Slug: wpgateway Plugin Developer: Jack Hopman/WPGateway Affected Versions: = 3.5 CVE ID: CVE-2022-3180 CVSS Score: 9.8 Critical CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Fully Patched Version: N/A...

0.8AI score0.08762EPSS
Exploits2
Circl
Circl
added 2022/09/14 7:31 p.m.14 views

CVE-2022-3180

creationtimestamp| type| source ---|---|--- 2022-09-14 19:31:02+00:00| exploited| https://t.me/truesecator/3416 2023-07-22 19:53:13+00:00| seen| https://t.me/breachdetector/304110 2025-02-11 21:39:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113987418774982603 2025-02-11...

9.8CVSS6AI score0.08762EPSS
Exploits2References8
The Hacker News
The Hacker News
added 2022/09/14 1:51 a.m.130 views

Over 280,000 WordPress Sites Attacked Using WPGateway Plugin Zero-Day Vulnerability

A zero-day flaw in the latest version of a WordPress premium plugin known as WPGateway is being actively exploited in the wild, potentially allowing malicious actors to completely take over affected sites. Tracked as CVE-2022-3180 CVSS score: 9.8, the issue is being weaponized to add a malicious...

2.3AI score0.08762EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/09/14 12:0 a.m.320 views

WordPress WPGateway 3.5 Privilege Escalation

Description: Unauthenticated Privilege Escalation Affected Plugin: WPGateway Plugin Slug: wpgateway Plugin Developer: Jack Hopman/WPGateway Affected Versions: = 3.5 CVE ID: CVE-2022-3180 CVSS Score: 9.8 Critical CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Fully Patched Version: N/A...

0.7AI score0.08762EPSS
Exploits2
VulnCheck KEV
VulnCheck KEV
added 2022/09/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2022-3180

A privilege escalation flaw exists in the WordPress WPGateway plugin that enables unauthenticated adversaries to add a user with administrator rights...

9.8CVSS6AI score0.08762EPSS
Exploits2References1
Rows per page
Query Builder