Lucene search
PatchstackCVE-2022-44737HistoryNov 22, 2022 - 4:15 p.m.
CVE-2022-44737
2022-11-2216:15:11
CWE-352
Patchstack
web.nvd.nist.gov
38
7
cve-2022-44737
cross-site request forgery
csrf
all-in-one security
aios
security and firewall
wordpress plugin
nvd
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
32.3%
Multiple Cross-Site Request Forgery vulnerabilities in All-In-One Security (AIOS) – Security and Firewall (WordPress plugin) <= 5.1.0 on WordPress.
Affected configurations
Node
tipsandtricks-hqall_in_one_wp_security_\&_firewallRange≤5.1.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tipsandtricks-hq | all_in_one_wp_security_\&_firewall | * | cpe:2.3:a:tipsandtricks-hq:all_in_one_wp_security_\&_firewall:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "All-In-One Security (AIOS) – Security and Firewall (WordPress plugin)",
"vendor": "All In One WP Security & Firewall Team",
"versions": [
{
"changes": [
{
"at": "5.1.1",
"status": "unaffected"
}
],
"lessThanOrEqual": "5.1.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Social References
More
Related
cnvd
cnvd
prion
prion
Cross site request forgery (csrf)
2022-11-22 16:15:00
patchstack
patchstack
cvelist
cvelist
openvas
openvas
nvd
nvd
CVE-2022-44737
2022-11-22 16:15:11
wpvulndb
wpvulndb
All-In-One Security < 5.1.1 - Bulk Actions via CSRF
2022-11-22 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
32.3%
Related for CVE-2022-44737