CVE-2022-45807: WordPress WP Mail Log Plugin <= 1.0.1 is vulnerable to Cross Site Request Forgery (CSRF)
First published: Thu Feb 02 2023(Updated: )
Cross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin <= 1.0.1 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Wpvibes Wp Mail Log | <1.0.2 |
Remedy
Update to 1.0.2 or higher version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for the Cross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin?
The vulnerability ID for the Cross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin is CVE-2022-45807.
What is the severity of CVE-2022-45807?
The severity of CVE-2022-45807 is high.
What is the affected software for CVE-2022-45807?
The affected software for CVE-2022-45807 is WPVibes WP Mail Log plugin <= 1.0.1 versions.
How can I fix CVE-2022-45807?
To fix CVE-2022-45807, update WPVibes WP Mail Log plugin to version 1.0.2 or higher.
What is the Common Weakness Enumeration (CWE) for CVE-2022-45807?
The Common Weakness Enumeration (CWE) for CVE-2022-45807 is CWE-352.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/author
- agent/references
- agent/severity
- agent/title
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/wpvibes
- canonical/wpvibes wp mail log