Lucene search
PatchstackCVELIST:CVE-2021-36891HistoryJun 15, 2022 - 7:16 p.m.
CVE-2021-36891 WordPress Photo Gallery by Supsystic plugin <= 1.15.5 - Cross-Site Request Forgery (CSRF) leading to Plugin Settings Change
2022-06-1519:16:58
CWE-352
Patchstack
www.cve.org
3
cve-2021-36891
csrf
wordpress
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.001
Percentile
20.8%
Cross-Site Request Forgery (CSRF) vulnerability in Photo Gallery by Supsystic plugin <= 1.15.5 at WordPress allows changing the plugin settings.
CNA Affected
[
{
"product": "Photo Gallery by Supsystic (WordPress plugin)",
"vendor": "Supsystic",
"versions": [
{
"lessThanOrEqual": "1.15.5",
"status": "affected",
"version": "<= 1.15.5",
"versionType": "custom"
}
]
}
]Related
wpexploit
wpexploit
Photo Gallery by Supsystic < 1.15.6 - Arbitrary Settings Update via CSRF
2022-06-15 00:00:00
patchstack
patchstack
cnvd
cnvd
WordPress Photo Gallery plugin跨站请求伪造漏洞
2022-06-17 00:00:00
wpvulndb
wpvulndb
Photo Gallery by Supsystic < 1.15.6 - Arbitrary Settings Update via CSRF
2022-06-15 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-06-15 20:15:00
nvd
nvd
CVE-2021-36891
2022-06-15 20:15:17
cve
cve
CVE-2021-36891
2022-06-15 20:15:17
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.001
Percentile
20.8%
Related for CVELIST:CVE-2021-36891