CVE-2022-46797

Name of the Vulnerable Software and Affected Versions Conversios All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce plugin versions <= 5.2.3

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability that allows for changes to the plugin settings. This can occur due to the lack of proper validation of requests, enabling an attacker to manipulate the plugin's configuration without the user's knowledge or consent.

Recommendations For versions <= 5.2.3, update to a version greater than 5.2.3 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.