3 matches found
CVE-2022-40198
Cross-Site Request Forgery CSRF vulnerability in StandaloneTech TeraWallet – For WooCommerce plugin = 1.3.24 leading to plugin settings change...
CVE-2022-40198
CVE-2022-40198 analysis (TeraWallet – For WooCommerce) Affected software: StandaloneTech TeraWallet – For WooCommerce plugin <= 1.3.24 (WordPress/WooCommerce ecosystem). Root cause/tech detail: Cross-Site Request Forgery (CSRF) vulnerability in the plugin that can lead to changes in plugin set...
WordPress TeraWallet – For WooCommerce Plugin <= 1.3.24 is vulnerable to Cross Site Request Forgery (CSRF)
Software TeraWallet – For WooCommerce Type Plugin Vulnerable versions = 1.3.24 Fixed in 1.4.0 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-40198 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 35694eeb3788 Credits...