CVE-2022-47448

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-47448
Cross-Site Request Forgery (CSRF) vulnerability in dev.Xiligroup.Com - MS plugin <= 1.12.03 versions.

8.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://patchstack.com/database/vulnerability/xili-tidy-tags/wordpress-xili-tidy-tags-plugin-1-12-03-cross-site-request-forgery-csrf?_s_id=cve Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:xiligroup:xili-tidy-tags:*:*:*:*:*:wordpress:*:*
History

No history.

Information

Published : 2023-05-24 17:15

Updated : 2023-05-30 17:45

NVD link : CVE-2022-47448

Mitre link : CVE-2022-47448

CVE.ORG link : CVE-2022-47448

JSON object : View

Products Affected

xiligroup

  • xili-tidy-tags
CWE
CWE-352

Cross-Site Request Forgery (CSRF)