Lucene search
China National Vulnerability DatabaseCNVD-2022-54355HistoryJun 30, 2022 - 12:00 a.m.
WordPress Clean-Contact plugin跨站请求伪造漏洞
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
clean-contact plugin
cross-site request forgery
EPSS
0.001
Percentile
25.9%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Clean-Contact plugin 1.6 and earlier versions are vulnerable to cross-site request forgery, which stems from a CSRF check that is not performed when updating its settings and can be exploited to through a CSRF attack to cause the logged-in administrator to change the configuration.
Related
patchstack
patchstack
wpvulndb
wpvulndb
Clean-Contact <= 1.6 - Arbitrary Settings Update to Stored XSS via CSRF
2022-06-01 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-06-27 09:15:00
wpexploit
wpexploit
Clean-Contact <= 1.6 - Arbitrary Settings Update to Stored XSS via CSRF
2022-06-01 00:00:00
nvd
nvd
CVE-2022-1914
2022-06-27 09:15:10
cvelist
cvelist
cve
cve
CVE-2022-1914
2022-06-27 09:15:10