Lucene search
WPScanCVELIST:CVE-2022-3688HistoryNov 21, 2022 - 12:00 a.m.
CVE-2022-3688 WPQA < 5.9 - Follow/Unfollow via CSRF
2022-11-2100:00:00
WPScan
www.cve.org
3
wpqa builder
wordpress
csrf
vulnerability
The WPQA Builder WordPress plugin before 5.9 does not have CSRF check when following and unfollowing users, which could allow attackers to make logged in users perform such actions via CSRF attacks
CNA Affected
[
{
"vendor": "Unknown",
"product": "WPQA Builder",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "5.9"
}
],
"defaultStatus": "unaffected"
}
]Related
patchstack
patchstack
cve
cve
CVE-2022-3688
2022-11-21 11:15:20
cnvd
cnvd
WordPress WPQA Builder Cross-Site Request Forgery Vulnerability
2022-11-23 00:00:00
prion
prion
Cross site request forgery (csrf)
2022-11-21 11:15:00
nvd
nvd
CVE-2022-3688
2022-11-21 11:15:20