Lucene search
China National Vulnerability DatabaseCNVD-2022-57168HistoryJun 22, 2022 - 12:00 a.m.
WordPress CaPa Protect plugin cross-site request forgery vulnerability
2022-06-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
wordpress
capa protect
csrf
vulnerability
cross-site request forgery
EPSS
0.001
Percentile
26.3%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress CaPa Protect plugin is vulnerable to cross-site request forgery, which stems from the failure to perform CSRF checks when updating its settings, and can be exploited by attackers to allow, via CSRF attacks logged-in administrators to change them and disable the application’s protection.
Related
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-06-20 11:15:00
wpexploit
wpexploit
CaPa Protect <= 0.5.8.2 - Arbitrary Settings Update via CSRF
2022-05-30 00:00:00
cve
cve
CVE-2022-1832
2022-06-20 11:15:10
wpvulndb
wpvulndb
CaPa Protect <= 0.5.8.2 - Arbitrary Settings Update via CSRF
2022-05-30 00:00:00
nvd
nvd
CVE-2022-1832
2022-06-20 11:15:10
cvelist
cvelist
CVE-2022-1832 CaPa Protect <= 0.5.8.2 - Arbitrary Settings Update via CSRF
2022-06-20 10:26:11