Lucene search
PatchstackCVE-2022-41978HistoryNov 09, 2022 - 4:15 p.m.
CVE-2022-41978
2022-11-0916:15:18
CWE-264
Patchstack
web.nvd.nist.gov
33
5
cve
2022
41978
auth
subscriber
arbitrary options update
vulnerability
zoho crm
lead magnet plugin
wordpress
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
31.7%
Auth. (subscriber+) Arbitrary Options Update vulnerability in Zoho CRM Lead Magnet plugin <= 1.7.5.8 on WordPress.
Affected configurations
Node
zohocorpzoho_crm_lead_magnetRange≤1.7.5.8wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| zohocorp | zoho_crm_lead_magnet | * | cpe:2.3:a:zohocorp:zoho_crm_lead_magnet:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "Zoho CRM",
"product": "Zoho CRM Lead Magnet (WordPress plugin)",
"versions": [
{
"version": "<= 1.7.5.8",
"status": "affected",
"lessThanOrEqual": "1.7.5.8",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
prion
prion
Code injection
2022-11-09 16:15:00
patchstack
patchstack
cvelist
cvelist
wpexploit
wpexploit
Zoho CRM Lead Magnet < 1.7.6.2 - Subscriber+ Arbitrary Options Update
2022-10-27 00:00:00
wpvulndb
wpvulndb
Zoho CRM Lead Magnet < 1.7.6.2 - Subscriber+ Arbitrary Options Update
2022-10-27 00:00:00
nvd
nvd
CVE-2022-41978
2022-11-09 16:15:18
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
31.7%
Related for CVE-2022-41978