Vulnerabilities > CVE-2022-2275 - Unspecified vulnerability in WP Edit Menu Project WP Edit Menu

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
wp-edit-menu-project

Summary

The WP Edit Menu WordPress plugin before 1.5.0 does not have CSRF in an AJAX action, which could allow attackers to make a logged in admin delete arbitrary posts/pages from the blog via a CSRF attack

Vulnerable Configurations

Part Description Count
Application
Wp_Edit_Menu_Project
1