Lucene search
PatchstackCVE-2022-35730HistoryDec 04, 2022 - 11:15 p.m.
CVE-2022-35730
2022-12-0423:15:09
CWE-352
Patchstack
web.nvd.nist.gov
31
cve-2022-35730
csrf
oceanwp
sticky header
plugin
wordpress
nvd
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
21.7%
Cross-Site Request Forgery (CSRF) vulnerability inΒ Oceanwp sticky header plugin <=Β 1.0.8 on WordPress.
Affected configurations
Node
oceanwpsticky_headerRangeβ€1.0.8wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oceanwp | sticky_header | * | cpe:2.3:a:oceanwp:sticky_header:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"product": "Oceanwp sticky header",
"vendor": "Oren Hahiashvili",
"versions": [
{
"lessThanOrEqual": "1.0.8",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2022-12-04 23:15:00
wpvulndb
wpvulndb
Oceanwp Sticky Header <= 1.0.8 - CSRF
2022-09-26 00:00:00
patchstack
patchstack
cvelist
cvelist
nvd
nvd
CVE-2022-35730
2022-12-04 23:15:09
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
21.7%
Related for CVE-2022-35730