Lucene search
PatchstackCVE-2023-25058HistoryMay 26, 2023 - 3:15 p.m.
CVE-2023-25058
2023-05-2615:15:11
CWE-352
Patchstack
web.nvd.nist.gov
26
cve
2023
25058
csrf
cross-site request forgery
brainstorm force
schema
all in one
rich snippets
plugin
nvd
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
27.7%
Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force Schema – All In One Schema Rich Snippets plugin <= 1.6.5 versions.
Affected configurations
Node
brainstormforceschemaRange<1.6.6wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| brainstormforce | schema | * | cpe:2.3:a:brainstormforce:schema:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "all-in-one-schemaorg-rich-snippets",
"product": "Schema – All In One Schema Rich Snippets",
"vendor": "Brainstorm Force",
"versions": [
{
"changes": [
{
"at": "1.6.6",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.6.5",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
nvd
nvd
CVE-2023-25058
2023-05-26 15:15:11
wpvulndb
wpvulndb
Schema - All In One Schema Rich Snippets < 1.6.6 - Multiple CSRF
2023-02-16 00:00:00
prion
prion
Cross site request forgery (csrf)
2023-05-26 15:15:00
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
27.7%
Related for CVE-2023-25058