CVE-2022-38704

Опубликовано: 23 сент. 2022

Источник: nvd

CVSS3: 5.4

CVSS3: 4.3

EPSS Низкий

Описание

Cross-Site Request Forgery (CSRF) vulnerability in SEO Redirection plugin <= 8.9 at WordPress, leading to deletion of 404 errors and redirection history.

Ссылки

https://patchstack.com/database/vulnerability/seo-redirection/wordpress-seo-redirection-plugin-8-9-cross-site-request-forgery-csrf-vulnerability/_s_id=cve
Broken Link
https://wordpress.org/plugins/seo-redirection/#developers
Product
https://patchstack.com/database/vulnerability/seo-redirection/wordpress-seo-redirection-plugin-8-9-cross-site-request-forgery-csrf-vulnerability/_s_id=cve
Broken Link
https://wordpress.org/plugins/seo-redirection/#developers
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:clogica:seo_redirection:*:*:*:*:*:wordpress:*:*

Версия до 8.9 (включая)

EPSS

Процентиль: 27%

0.00097

Низкий

5.4 Medium

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-qhg4-wfwm-7qcr

CVSS3: 4.3

github

больше 3 лет назад

Cross-Site Request Forgery (CSRF) vulnerability in SEO Redirection plugin <= 8.9 at WordPress, leading to deletion of 404 errors and redirection history.

EPSS

Процентиль: 27%

0.00097

Низкий

5.4 Medium

CVSS3

4.3 Medium

CVSS3

Дефекты

CWE-352