Lucene search
China National Vulnerability DatabaseCNVD-2023-02269HistoryNov 23, 2022 - 12:00 a.m.
WordPress WPQA Builder Cross-Site Request Forgery Vulnerability
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
wordpress
wpqa builder
cross-site request forgery
EPSS
0.002
Percentile
61.3%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. cross-site request forgery vulnerability exists in versions of WordPress WPQA Builder prior to 5.9. The vulnerability stems from the lack of cross-site request forgery checks when tracking and untracking users. An attacker could use the vulnerability to launch a CSRF attack.
Related
patchstack
patchstack
cve
cve
CVE-2022-3688
2022-11-21 11:15:20
cvelist
cvelist
CVE-2022-3688 WPQA < 5.9 - Follow/Unfollow via CSRF
2022-11-21 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-11-21 11:15:00
nvd
nvd
CVE-2022-3688
2022-11-21 11:15:20