First published: Fri Sep 23 2022(Updated: )
Cross-Site Request Forgery (CSRF) vulnerability in Seriously Simple Podcasting plugin <= 2.16.0 at WordPress, leading to plugin settings change.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Castos Seriously Simple Podcasting | <=2.16.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-40132 is a Cross-Site Request Forgery (CSRF) vulnerability in the Seriously Simple Podcasting plugin version <= 2.16.0 at WordPress, which can lead to plugin settings change.
CVE-2022-40132 has a severity rating of medium with a CVSS score of 4.3.
The Seriously Simple Podcasting plugin version <= 2.16.0 at WordPress is affected by CVE-2022-40132.
To fix CVE-2022-40132, update the Seriously Simple Podcasting plugin to a version higher than 2.16.0.
You can find more information about CVE-2022-40132 at the following references: - [Patchstack](https://patchstack.com/database/vulnerability/seriously-simple-podcasting/wordpress-seriously-simple-podcasting-plugin-2-16-0-cross-site-request-forgery-csrf-vulnerability/_s_id=cve) - [WordPress.org](https://wordpress.org/plugins/seriously-simple-podcasting/#developers)