CVE-2022-3180

The WPGateway Plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.5. This allows unauthenticated attackers to create arbitrary malicious administrator accounts...

CVE-2022-3180

The WPGateway Plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.5. This allows unauthenticated attackers to create arbitrary malicious administrator accounts...

CVE-2022-3180 WPGateway <= 3.5 - Unauthenticated Privilege Escalation

The WPGateway Plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 3.5. This allows unauthenticated attackers to create arbitrary malicious administrator accounts...

WordPress WPGateway Plugin Privilege Escalation (CVE-2022-3180)

A privilege escalation exists in WordPress WPGateway Plugin. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

Over 280,000 WordPress Sites Attacked Using WPGateway Plugin Zero-Day Vulnerability

A zero-day flaw in the latest version of a WordPress premium plugin known as WPGateway is being actively exploited in the wild, potentially allowing malicious actors to completely take over affected sites. Tracked as CVE-2022-3180 CVSS score: 9.8, the issue is being weaponized to add a malicious...

PT-2022-20941 · WordPress · Wpgateway Plugin

Name of the Vulnerable Software and Affected Versions: WPGateway Plugin for WordPress versions up to, and including, 3.5 Description: The WPGateway Plugin for WordPress is vulnerable to privilege escalation. This allows unauthenticated attackers to create arbitrary malicious administrator account...

VulnCheck KEV: CVE-2022-3180

A privilege escalation flaw exists in the WordPress WPGateway plugin that enables unauthenticated adversaries to add a user with administrator rights...