CVE-2022-1591

UNKNOWN 0.0

WordPress Ping Optimizer < 2.35.1.3.0 - Arbitrary Settings Update via CSRF

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

The WordPress Ping Optimizer WordPress plugin before 2.35.1.3.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack

CWE	CWE-352
Vendor	unknown
Product	wordpress ping optimizer
Published	Sep 19, 2022
Last Updated	Aug 3, 2024

Stay Ahead of the Next One

Get instant alerts for unknown wordpress ping optimizer

Be the first to know when new unknown vulnerabilities affecting unknown wordpress ping optimizer are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Unknown / WordPress Ping Optimizer

2.35.1.3.0 < 2.35.1.3.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wpscan.com: https://wpscan.com/vulnerability/b1a52c7e-3422-40dd-af5a-ea4c622a87aa

Credits

Daniel Ruf