Vulnerabilities > Cross-Site Request Forgery (CSRF)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-01 | CVE-2022-46805 | Cross-Site Request Forgery (CSRF) vulnerability in Wptrio Conditional Shipping for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in Lauri Karisola / WP Trio Conditional Shipping for WooCommerce plugin <= 2.3.1 leading to activation/deactivation of plugin rulesets. | 5.4 |
| 2023-03-01 | CVE-2022-46806 | Cross-Site Request Forgery (CSRF) vulnerability in Villatheme Cart ALL in ONE for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Cart All In One For WooCommerce plugin <= 1.1.10 leading to cart modification. | 4.3 |
| 2023-03-01 | CVE-2022-47148 | Cross-Site Request Forgery (CSRF) vulnerability in Wpovernight Woocommerce PDF Invoices& Packing Slips Cross-Site Request Forgery (CSRF) vulnerability in WP Overnight PDF Invoices & Packing Slips for WooCommerce plugin <= 3.2.5 leading to popup dismiss. | 4.3 |
| 2023-03-01 | CVE-2022-38468 | Cross-Site Request Forgery (CSRF) vulnerability in Imagely Nextgen Gallery Cross-Site Request Forgery (CSRF) vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery plugin <= 3.28 leading to thumbnail alteration. | 4.3 |
| 2023-03-01 | CVE-2022-40198 | Cross-Site Request Forgery (CSRF) vulnerability in Standalonetech Terawallet Cross-Site Request Forgery (CSRF) vulnerability in StandaloneTech TeraWallet – For WooCommerce plugin <= 1.3.24 leading to plugin settings change. | 4.3 |
| 2023-03-01 | CVE-2022-45068 | Cross-Site Request Forgery (CSRF) vulnerability in Mercadopago Mercado Pago Payments for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in Mercado Pago Mercado Pago payments for WooCommerce plugin <= 6.3.1. | 8.8 |
| 2023-03-01 | CVE-2022-45804 | Cross-Site Request Forgery (CSRF) vulnerability in Robogallery Robo Gallery Cross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.9 leading to galleries hierarchy change, included plugin deactivate & activate. | 5.4 |
| 2023-03-01 | CVE-2022-46797 | Cross-Site Request Forgery (CSRF) vulnerability in Tatvic Conversios.Io Cross-Site Request Forgery (CSRF) vulnerability in Conversios All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce plugin <= 5.2.3 leads to plugin settings change. | 4.3 |
| 2023-03-01 | CVE-2023-23973 | Cross-Site Request Forgery (CSRF) vulnerability in A3Rev Contact US Page - Contact People Cross-Site Request Forgery (CSRF) vulnerability in a3rev Software Contact Us Page – Contact People plugin <= 3.7.0. | 6.5 |
| 2023-03-01 | CVE-2023-23974 | Cross-Site Request Forgery (CSRF) vulnerability in Fullworksplugins Quick Event Manager Cross-Site Request Forgery (CSRF) vulnerability in Fullworks Quick Event Manager plugin <= 9.7.4 affecting all registration actions (delete, delete all, edit, update). | 5.4 |