Lucene search
PatchstackVULNRICHMENT:CVE-2023-40556HistoryOct 06, 2023 - 5:30 a.m.
CVE-2023-40556 WordPress Schedule Posts Calendar Plugin <= 5.2 is vulnerable to Cross Site Request Forgery (CSRF)
2023-10-0605:30:29
CWE-352
Patchstack
github.com
1
wordpress
schedule posts
calendar
plugin
csrf
vulnerability
cve-2023-40556
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
7.4
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Cross-Site Request Forgery (CSRF) vulnerability in Greg Ross Schedule Posts Calendar plugin <=Β 5.2 versions.
Related
cvelist
cvelist
cve
cve
CVE-2023-40556
2023-10-06 06:15:11
prion
prion
Cross site request forgery (csrf)
2023-10-06 06:15:00
wpvulndb
wpvulndb
Schedule Posts Calendar < 5.3 - CSRF
2023-10-06 00:00:00
nvd
nvd
CVE-2023-40556
2023-10-06 06:15:11
wordfence
wordfence
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
7.4
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-40556