First published: Mon Aug 01 2022(Updated: )
Credit: contact@wpscan.com
Affected Software | Affected Version | How to fix |
---|---|---|
Givewp Givewp | <2.21.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-2260 is a vulnerability in the GiveWP WordPress plugin before 2.21.3 that allows attackers to perform a Denial of Service (DoS) attack on the web server via a CSRF attack.
CVE-2022-2260 has a severity rating of 6.5 out of 10 (medium severity).
CVE-2022-2260 impacts the GiveWP WordPress plugin before version 2.21.3, allowing attackers to make a logged in admin DoS the web server via a CSRF attack.
To fix CVE-2022-2260, update the GiveWP WordPress plugin to version 2.21.3 or newer.
CVE-2022-2260 is associated with CWE ID 352.