exploitDog

CVE-2022-4265

Опубликовано: 06 мар. 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

The Replyable WordPress plugin before 2.2.10 does not validate the class name submitted by the request when instantiating an object in the prompt_dismiss_notice action and also lacks CSRF check in the related action. This could allow any authenticated users, such as subscriber to perform Object Injection attacks. The attack could also be done via a CSRF vector against any authenticated user

Ссылки

https://wpscan.com/vulnerability/095cba08-7edd-41fb-9776-da151c0885dd
Exploit
Third Party Advisory
https://wpscan.com/vulnerability/095cba08-7edd-41fb-9776-da151c0885dd
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gopostmatic:replyable:*:*:*:*:*:wordpress:*:*

Версия до 2.2.10 (исключая)

EPSS

Процентиль: 33%

0.00133

Низкий

8.8 High

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-2wpw-75c5-m9hx

CVSS3: 8.8

github

почти 3 года назад

The Replyable WordPress plugin before 2.2.10 does not validate the class name submitted by the request when instantiating an object in the prompt_dismiss_notice action and also lacks CSRF check in the related action. This could allow any authenticated users, such as subscriber to perform Object Injection attacks. The attack could also be done via a CSRF vector against any authenticated user

EPSS

Процентиль: 33%

0.00133

Низкий

8.8 High

CVSS3

Дефекты

CWE-352