CVE-2022-47427: WordPress My Calendar Plugin <= 3.3.24.1 is vulnerable to Cross Site Request Forgery (CSRF)
First published: Wed Mar 15 2023(Updated: )
Cross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Calendar plugin <= 3.3.24.1 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| My Calendar Project My Calendar | <=3.3.24.1 |
Remedy
Update to 3.3.25 or a higher version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2022-47427?
The severity of CVE-2022-47427 is high.
What is CVE-2022-47427?
CVE-2022-47427 is a Cross-Site Request Forgery (CSRF) vulnerability in the Joseph C Dolson My Calendar plugin version <= 3.3.24.1.
Which software versions are affected by CVE-2022-47427?
The Joseph C Dolson My Calendar plugin versions up to and including 3.3.24.1 are affected by CVE-2022-47427.
How can I fix the Cross-Site Request Forgery (CSRF) vulnerability in the Joseph C Dolson My Calendar plugin?
To fix the Cross-Site Request Forgery (CSRF) vulnerability in the Joseph C Dolson My Calendar plugin, you should update to version 3.3.25 or later.
Where can I find more information about CVE-2022-47427?
You can find more information about CVE-2022-47427 at the following reference: [link](https://patchstack.com/database/vulnerability/my-calendar/wordpress-my-calendar-plugin-3-3-24-1-cross-site-request-forgery-csrf?_s_id=cve).
- collector/nvd-index
- agent/type
- agent/softwarecombine
- agent/title
- agent/weakness
- agent/author
- agent/severity
- agent/remedy
- agent/references
- agent/description
- agent/event
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- vendor/my calendar project
- canonical/my calendar project my calendar
- version/my calendar project my calendar/3.3.24.1