Lucene search
PatchstackCVE-2023-32964HistoryMay 26, 2023 - 3:15 p.m.
CVE-2023-32964
2023-05-2615:15:13
CWE-352
Patchstack
web.nvd.nist.gov
22
cve-2023-32964
cross-site request forgery
csrf
made with fuel better notifications for wp
plugin vulnerability
nvd
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
27.7%
Cross-Site Request Forgery (CSRF) vulnerability in Made with Fuel Better Notifications for WP plugin <=Β 1.9.2 versions.
Affected configurations
Node
madewithfuelbetter_notifications_for_wpRange<1.9.3wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| madewithfuel | better_notifications_for_wp | * | cpe:2.3:a:madewithfuel:better_notifications_for_wp:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "bnfw",
"product": "Better Notifications for WP",
"vendor": "Made with Fuel",
"versions": [
{
"changes": [
{
"at": "1.9.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.9.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Cross site request forgery (csrf)
2023-05-26 15:15:00
wpvulndb
wpvulndb
Better Notifications for WP < 1.9.3 - Cross-Site Request Forgery (CSRF)
2023-05-18 00:00:00
nvd
nvd
CVE-2023-32964
2023-05-26 15:15:13
cvelist
cvelist
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
27.7%
Related for CVE-2023-32964