Lucene search
K

4 matches found

OSV
OSV
added 2022/10/31 4:15 p.m.4 views

CVE-2022-3419

The Automatic User Roles Switcher WordPress plugin before 1.1.2 does not have authorisation and proper CSRF checks, allowing any authenticated users like subscriber to add any role to themselves, such as administrator...

6.5CVSS5.8AI score0.00332EPSS
Exploits1References1
CNNVD
CNNVD
added 2022/10/31 12:0 a.m.5 views

WordPress plugin Automatic User Roles Switcher 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A security vulnerability exists in the WordPress...

6.5CVSS6.3AI score0.00332EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/10/31 12:0 a.m.6 views

CVE-2022-3419 Automatic User Roles Switcher < 1.1.2 - Subscriber+ Privilege Escalation

The Automatic User Roles Switcher WordPress plugin before 1.1.2 does not have authorisation and proper CSRF checks, allowing any authenticated users like subscriber to add any role to themselves, such as administrator...

6.7AI score0.00332EPSS
Exploits1References1
Patchstack
Patchstack
added 2022/10/10 12:0 a.m.23 views

WordPress Automatic User Roles Switcher premium plugin <= 1.1.1 - Auth. Privilege Escalation vulnerability

Auth. Privilege Escalation vulnerability discovered by WPScan in WordPress Automatic User Roles Switcher premium plugin versions = 1.1.1. Solution Update the WordPress Automatic User Roles Switcher plugin to the latest available version at least 1.1.2...

6.5CVSS4AI score0.00332EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder