Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 11:0 p.m.6 views

CVE-2022-1918

The ToolBar to Share plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing nonce validation on the plugintoolbarcomparte page. This makes it possible for unauthenticated attackers to update the plugins settings and inject...

8.8CVSS6.3AI score0.00815EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.22 views

WordPress ToolBar to Share plugin跨站点请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress ToolBar to Share plugin version 2.0 and prior versions are vulnerable to cross-site request forgery...

6.8CVSS1.8AI score0.00815EPSS
Exploits1Affected Software1
NVD
NVD
added 2022/06/13 1:15 p.m.14 views

CVE-2022-1918

The ToolBar to Share plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing nonce validation on the plugintoolbarcomparte page. This makes it possible for unauthenticated attackers to update the plugins settings and inject...

8.8CVSS0.00815EPSS
Exploits1References3
OSV
OSV
added 2022/06/13 1:15 p.m.5 views

CVE-2022-1918

The ToolBar to Share plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing nonce validation on the plugintoolbarcomparte page. This makes it possible for unauthenticated attackers to update the plugins settings and inject...

8.8CVSS5.6AI score0.00815EPSS
Exploits1References3
Prion
Prion
added 2022/06/13 1:15 p.m.16 views

Cross site request forgery (csrf)

The ToolBar to Share plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing nonce validation on the plugintoolbarcomparte page. This makes it possible for unauthenticated attackers to update the plugins settings and inject...

6.8CVSS8.2AI score0.00815EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2022/06/13 12:46 p.m.14 views

CVE-2022-1918 ToolBar to Share <= 2.0 - Cross-Site Request Forgery to Cross-Site Scripting

The ToolBar to Share plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.0. This is due to missing nonce validation on the plugintoolbarcomparte page. This makes it possible for unauthenticated attackers to update the plugins settings and inject...

8.8CVSS8.5AI score0.00815EPSS
Exploits1References3
CVE
CVE
added 2022/06/13 12:46 p.m.69 views

CVE-2022-1918

CVE-2022-1918 concerns the WordPress ToolBar to Share plugin (

8.8CVSS8.3AI score0.00815EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.5 views

WordPress plugin ToolBar to Share 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress ToolBar to Share plugin version 2.0 and prior versions are vulnerable to cross-site request forgery...

8.8CVSS5.4AI score0.00815EPSS
Exploits1References3
WPVulnDB
WPVulnDB
added 2022/06/09 12:0 a.m.16 views

Toolbar To Share <= 2.0 - Stored Cross-Site Scripting via CSRF

The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored Cross-Site scripting issue due to a lack of sanitisation and escaping...

8.8CVSS4.3AI score0.00815EPSS
Exploits1Affected Software1
Rows per page
Query Builder