Lucene search
PatchstackCVE-2022-41805HistoryNov 18, 2022 - 7:15 p.m.
CVE-2022-41805
2022-11-1819:15:30
CWE-352
Patchstack
web.nvd.nist.gov
35
3
cve-2022-41805
csrf
vulnerability
booster for woocommerce
plugin
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
20.8%
Cross-Site Request Forgery (CSRF) vulnerability in Booster for WooCommerce plugin <= 5.6.6 on WordPress.
Affected configurations
Node
boosterbooster_for_woocommerceRange<5.6.7wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| booster | booster_for_woocommerce | * | cpe:2.3:a:booster:booster_for_woocommerce:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "Pluggabl LLC",
"product": "Booster for WooCommerce (WordPress plugin)",
"versions": [
{
"version": "<= 5.6.6",
"status": "affected",
"lessThanOrEqual": "5.6.6",
"versionType": "custom"
}
]
}
]Social References
More
Related
cnvd
cnvd
wpvulndb
wpvulndb
Booster for WooCommerce < 5.6.7 - Settings Reset via CSRF
2022-10-28 00:00:00
nvd
nvd
CVE-2022-41805
2022-11-18 19:15:30
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-11-18 19:15:00
cvelist
cvelist
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
20.8%
Related for CVE-2022-41805