Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:1FCC8F1B-901B-4651-ADD2-2C73967ABDBA
HistoryOct 28, 2022 - 12:00 a.m.

Creative Mail < 1.6.0 - Settings Reset via CSRF

2022-10-2800:00:00
wpscan.com
10
creative mail
plugin
csrf
vulnerability
security
software

0.001 Low

EPSS

Percentile

32.3%

JSON

The plugin does not have CSRF check when resetting its settings, which could allow attackers to make logged in admins perform such action via a CSRF attack

Related

cnvd 1
nvd 1
patchstack 1
githubexploit 1
cvelist 1
cve 1
prion 1
openvas 1
cnvd
cnvd
WordPress Creative Mail Cross-Site Request Forgery Vulnerability
2022-11-23 00:00:00
nvd
nvd
CVE-2022-40687
2022-11-18 19:15:29
patchstack
patchstack
WordPress Creative Mail plugin <= 1.5.4 - Cross-Site Request Forgery (CSRF) vulnerability
2022-10-28 00:00:00
githubexploit
githubexploit
Exploit for Cross-Site Request Forgery (CSRF) in Constantcontact Creative Mail
2022-10-28 08:53:12
cvelist
cvelist
CVE-2022-40687 WordPress Creative Mail plugin <= 1.5.4 - Cross-Site Request Forgery (CSRF) vulnerability
2022-10-28 00:00:00
cve
cve
CVE-2022-40687
2022-11-18 19:15:29
prion
prion
Cross site request forgery (csrf)
2022-11-18 19:15:00
openvas
openvas
WordPress Creative Mail Plugin < 1.6.0 Multiple CSRF Vulnerabilities
2023-03-27 00:00:00

0.001 Low

EPSS

Percentile

32.3%

JSON
Related for WPVDB-ID:1FCC8F1B-901B-4651-ADD2-2C73967ABDBA
cnvd1nvd1patchstack1githubexploit1cvelist1cve1prion1openvas1