Lucene search
PatchstackVULNRICHMENT:CVE-2023-44260HistoryOct 09, 2023 - 8:35 a.m.
CVE-2023-44260 WordPress Woocommerce ESTO Plugin <= 2.23.1 is vulnerable to Cross Site Request Forgery (CSRF)
2023-10-0908:35:06
CWE-352
Patchstack
github.com
wordpress; woocommerce; esto; plugin; cross site request forgery; vulnerability; mikk mihkel nurges; rebing oü; version 2.23.1
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
7.4
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Cross-Site Request Forgery (CSRF) vulnerability in Mikk Mihkel Nurges, Rebing OÜ Woocommerce ESTO plugin <= 2.23.1 versions.
Related
prion
prion
Cross site request forgery (csrf)
2023-10-09 09:15:00
cvelist
cvelist
cve
cve
CVE-2023-44260
2023-10-09 09:15:10
wpvulndb
wpvulndb
Woocommerce ESTO < 2.23.2 - Settings Update via CSRF
2023-10-11 00:00:00
nvd
nvd
CVE-2023-44260
2023-10-09 09:15:10
wordfence
wordfence
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
7.4
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-44260