Lucene search
PatchstackCVELIST:CVE-2022-40132HistorySep 23, 2022 - 6:34 p.m.
CVE-2022-40132 WordPress Seriously Simple Podcasting plugin <= 2.16.0 - Cross-Site Request Forgery (CSRF) vulnerability
2022-09-2318:34:04
CWE-352
Patchstack
www.cve.org
2
wordpress
simple podcasting
2.16.0
csrf
vulnerability
settings change
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.001
Percentile
20.8%
Cross-Site Request Forgery (CSRF) vulnerability in Seriously Simple Podcasting plugin <= 2.16.0 at WordPress, leading to plugin settings change.
CNA Affected
[
{
"product": "Seriously Simple Podcasting (WordPress plugin)",
"vendor": "Castos",
"versions": [
{
"lessThanOrEqual": "2.16.0",
"status": "affected",
"version": "<= 2.16.0",
"versionType": "custom"
}
]
}
]Related
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-09-23 19:15:00
wpvulndb
wpvulndb
Seriously Simple Podcasting < 2.16.1 - Arbitrary Settings Update via CSRF
2022-09-23 00:00:00
nvd
nvd
CVE-2022-40132
2022-09-23 19:15:15
cve
cve
CVE-2022-40132
2022-09-23 19:15:15
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
EPSS
0.001
Percentile
20.8%
Related for CVELIST:CVE-2022-40132