PT-2023-15224 · WordPress · Email Templates Customizer/Designer

Cat

·

Publicado

2023-11-07

·

Atualizado

2023-11-15

·

CVE-2022-47181

CVSS v3.1

8.8

Alta

VetorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Email Templates Customizer and Designer for WordPress and WooCommerce versions 1.4.2 and earlier
Description A Cross-Site Request Forgery (CSRF) issue affects the Email Templates Customizer and Designer for WordPress and WooCommerce, allowing unauthorized actions to be performed on behalf of a user.
Recommendations For versions 1.4.2 and earlier, update to a version that contains a fix for this issue.

Correção

CSRF

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-352

Identificadores relacionados

CVE-2022-47181

Produtos afetados

Email Templates Customizer/Designer