Lucene search
China National Vulnerability DatabaseCNVD-2023-05041HistoryFeb 16, 2022 - 12:00 a.m.
WordPress CMP plugin authorization issue vulnerability
2022-02-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
cmp plugin
authorization issue
vulnerability
php
mysql
login
authentication
page layout
EPSS
0.001
Percentile
35.0%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress CMP plugin version 4.0.19 prior to the authorization problem vulnerability, the vulnerability stems from the lack of authentication measures or insufficient authentication strength of the plugin, an attacker can use the vulnerability in the case of login to arbitrarily change the page layout.
Related
cve
cve
CVE-2022-0188
2022-02-14 12:15:16
nvd
nvd
CVE-2022-0188
2022-02-14 12:15:16
wpvulndb
wpvulndb
patchstack
patchstack
cvelist
cvelist
prion
prion
Design/Logic Flaw
2022-02-14 12:15:00
openvas
openvas
wpexploit
wpexploit