Lucene search

PatchstackVULNRICHMENT:CVE-2023-32592

HistoryNov 09, 2023 - 9:08 p.m.

CVE-2023-32592 WordPress Sunny Search Plugin <= 1.0.2 is vulnerable to Cross Site Request Forgery (CSRF)

2023-11-0921:08:34

CWE-352

Patchstack

github.com

wordpress

sunny search plugin

csrf

vulnerability

palasthotel

edward bock

katharina rompf

AI Score

7.4

Confidence

High

SSVC

Exploitation

none

Automatable

Technical Impact

total

JSON

Cross-Site Request Forgery (CSRF) vulnerability in Palasthotel by Edward Bock, Katharina Rompf Sunny Search plugin <= 1.0.2 versions.

References

patchstack.com/database/vulnerability/fast-search-powered-by-solr/wordpress-sunny-search-plugin-1-0-2-cross-site-request-forgery-csrf-vulnerability?_s_id=cve