PT-2022-27292 · Unknown · Creative Mail

Re-Alter

+1

·

Published

2022-11-18

·

Updated

2022-11-23

·

CVE-2022-44740

CVSS v3.1

8.8

High

VectorAV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Creative Mail plugin versions prior to 1.5.5
Description The issue concerns Multiple Cross-Site Request Forgery (CSRF) vulnerabilities.
Recommendations For versions prior to 1.5.5, update to version 1.5.5 or later to resolve the issue.

Fix

CSRF

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2022-44740

Affected Products

Creative Mail