Lucene search
HistoryMay 24, 2023 - 5:15 p.m.
CVE-2022-47446
cve-2022-47446
cross-site request forgery
viadat creations
store locator
wordpress
google maps
lotsoflocales
plugin
3.98.7
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
27.6%
Cross-Site Request Forgery (CSRF) vulnerability in Viadat Creations Store Locator for WordPress with Google Maps – LotsOfLocales plugin <= 3.98.7 versions.
Affected configurations
Node
viadatstore_locator_for_wordpress_with_google_mapsRange<3.98.8wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| viadat | store_locator_for_wordpress_with_google_maps | * | cpe:2.3:a:viadat:store_locator_for_wordpress_with_google_maps:*:*:*:*:*:wordpress:*:* |
Related
cnvd
cnvd
cvelist
cvelist
prion
prion
Cross site request forgery (csrf)
2023-05-24 17:15:00
cve
cve
CVE-2022-47446
2023-05-24 17:15:09
wpvulndb
wpvulndb
Store Locator <= 3.98.7 - Settings Update via CSRF
2023-05-24 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
6.5
Confidence
High
EPSS
0.001
Percentile
27.6%
Related for NVD:CVE-2022-47446