Lucene search
PatchstackCVE-2022-40132HistorySep 23, 2022 - 7:15 p.m.
CVE-2022-40132
2022-09-2319:15:15
CWE-352
Patchstack
web.nvd.nist.gov
33
4
cve
2022
40132
cross-site request forgery
csrf
vulnerability
seriously simple podcasting
wordpress
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
4.6
Confidence
High
EPSS
0.001
Percentile
20.8%
Cross-Site Request Forgery (CSRF) vulnerability in Seriously Simple Podcasting plugin <= 2.16.0 at WordPress, leading to plugin settings change.
Affected configurations
Node
castosseriously_simple_podcastingRange≤2.16.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| castos | seriously_simple_podcasting | * | cpe:2.3:a:castos:seriously_simple_podcasting:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"product": "Seriously Simple Podcasting (WordPress plugin)",
"vendor": "Castos",
"versions": [
{
"lessThanOrEqual": "2.16.0",
"status": "affected",
"version": "<= 2.16.0",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-09-23 19:15:00
wpvulndb
wpvulndb
Seriously Simple Podcasting < 2.16.1 - Arbitrary Settings Update via CSRF
2022-09-23 00:00:00
nvd
nvd
CVE-2022-40132
2022-09-23 19:15:15
cvelist
cvelist
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
4.6
Confidence
High
EPSS
0.001
Percentile
20.8%
Related for CVE-2022-40132