wp-better-permalinks Plugin up to 3.0.4 on WordPress cross-site request forgery
A vulnerability was found in wp-better-permalinks Plugin up to 3.0.4 on WordPress (WordPress Plugin) and classified as problematic. This issue affects an unknown part. Upgrading to version 3.0.5 eliminates this vulnerability.
| Field | 08/31/2019 07:50 AM | 08/10/2020 05:50 PM |
|---|---|---|
| name | wp-better-permalinks Plugin | wp-better-permalinks Plugin |
| version | <=3.0.4 | <=3.0.4 |
| platform | WordPress | WordPress |
| risk | 1 | 1 |
| cvss2 | 4.3 | 4.3 |
| cvss2 | 3.7 | 3.7 |
| cvss2 | N | N |
| cvss2 | M | M |
| cvss2 | N | N |
| cvss2 | N | N |
| cvss2 | P | P |
| cvss2 | N | N |
| cvss3 | 6.5 | 6.5 |
| cvss3 | 6.2 | 6.2 |
| cvss3 | 4.3 | 4.3 |
| cvss3 | 4.1 | 4.1 |
| cvss3 | N | N |
| cvss3 | L | L |
| cvss3 | N | N |
| cvss3 | R | R |
| cvss3 | U | U |
| cvss3 | N | N |
| cvss3 | L | L |
| cvss3 | N | N |
| date | 1567123200 (08/30/2019) | 1567123200 (08/30/2019) |
| price | $0-$5k | $0-$5k |
| name | Upgrade | Upgrade |
| upgrade | 3.0.5 | 3.0.5 |
| cve | CVE-2019-15835 | CVE-2019-15835 |
| cvss2 | ND | ND |
| cvss2 | OF | OF |
| cvss2 | ND | ND |
| cvss3 | X | X |
| cvss3 | O | O |
| cvss3 | X | X |
| cvss3 | 8.8 | 8.8 |
| type | WordPress Plugin | |
| cwe | 0 | 352 (cross site request forgery) |
| cvss2 | N | |
| cvss2 | M | |
| cvss2 | N | |
| cvss2 | P | |
| cvss2 | P | |
| cvss2 | P | |
| cvss3 | N | |
| cvss3 | L | |
| cvss3 | N | |
| cvss3 | R | |
| cvss3 | U | |
| cvss3 | H | |
| cvss3 | H | |
| cvss3 | H | |
| cve | 1567036800 | |
| cve | The wp-better-permalinks plugin before 3.0.5 for WordPress has CSRF. |
Might our Artificial Intelligence support you?
Check our Alexa App!