CVE-2022-1757 in Pagebar Pluginالمعلومات

الملخص

بحسب MITRE • 11/07/2022

The Pagebar WordPress plugin through 2.65 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack. Furthermore, due to the lack of sanitisation in some of them, it could also lead to Stored XSS issues

If you want to get best quality of vulnerability data, you may have to visit VulDB.

حجز

17/05/2022

إفشاء

11/07/2022

الاعتدال

تمت الموافقة

إدخال

VDB-203550

EPSS

0.00331

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Want to know what is going to be exploited?

We predict KEV entries!