PT-2022-27822 · Unknown · Auto Upload Images
Published
2022-12-21
·
Updated
2024-05-17
·
CVE-2022-4633
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Auto Upload Images versions up to 3.3.0
Description
A vulnerability was found in the file src/setting-page.php of the component Settings Handler, leading to cross-site request forgery. The attack may be launched remotely.
Recommendations
For versions up to 3.3.0, upgrade to version 3.3.1 to address this issue.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Auto Upload Images