Lucene search
PatchstackCVE-2022-34839HistoryJul 22, 2022 - 5:15 p.m.
CVE-2022-34839
2022-07-2217:15:09
Patchstack
web.nvd.nist.gov
57
4
cve-2022-34839
authentication bypass
codexshaper
wp oauth2 server
vulnerability
wordpress
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.002
Percentile
59.6%
Authentication Bypass vulnerability in CodexShaper’s WP OAuth2 Server plugin <= 1.0.1 at WordPress.
Affected configurations
Node
codexshaperwp_oauth2_serverRange≤1.0.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| codexshaper | wp_oauth2_server | * | cpe:2.3:a:codexshaper:wp_oauth2_server:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"product": "WP OAuth2 Server (WordPress plugin)",
"vendor": "CodexShaper",
"versions": [
{
"lessThanOrEqual": "1.0.1",
"status": "affected",
"version": "<= 1.0.1",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
patchstack
patchstack
cnvd
cnvd
WordPress WP OAuth2 Server Access Control Error Vulnerability
2022-07-26 00:00:00
nvd
nvd
CVE-2022-34839
2022-07-22 17:15:09
prion
prion
Authentication flaw
2022-07-22 17:15:00
cvelist
cvelist
wpvulndb
wpvulndb
WP OAuth2 Server <= 1.0.1 - Authentication Bypass
2022-07-18 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0.002
Percentile
59.6%
Related for CVE-2022-34839