Lucene search
HistorySep 23, 2022 - 3:15 p.m.
CVE-2022-36388
cross-site request forgery
yds support ticket system
wordpress
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
41.8%
Cross-Site Request Forgery (CSRF) vulnerability in YDS Support Ticket System plugin <= 1.0 at WordPress.
Affected configurations
Node
ydesignservicesyds_support_ticket_systemRange≤1.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ydesignservices | yds_support_ticket_system | * | cpe:2.3:a:ydesignservices:yds_support_ticket_system:*:*:*:*:*:wordpress:*:* |
Related
cve
cve
CVE-2022-36388
2022-09-23 15:15:13
wpvulndb
wpvulndb
YDS Support Ticket System <= 1.0 - Cross-Site Request Forgery
2022-09-12 00:00:00
cnvd
cnvd
WordPress YDS Support Ticket System Cross-Site Request Forgery Vulnerability
2022-09-28 00:00:00
cvelist
cvelist
patchstack
patchstack
prion
prion
Cross site request forgery (csrf)
2022-09-23 15:15:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
41.8%
Related for NVD:CVE-2022-36388