Vulnerability Details CVE-2019-14679
core/views/arprice_import_export.php in the ARPrice Lite plugin 2.2 for WordPress allows wp-admin/admin.php?page=arplite_import_export CSRF.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.1%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
- https://wordpress.org/plugins/arprice-responsive-pricing-table/#developers
- https://www.pluginvulnerabilities.com/2019/07/11/cross-site-request-forgery-csrf-vulnerability-in-arprice-lite/
- https://wordpress.org/plugins/arprice-responsive-pricing-table/#developers
- https://www.pluginvulnerabilities.com/2019/07/11/cross-site-request-forgery-csrf-vulnerability-in-arprice-lite/
Products affected by CVE-2019-14679
-
cpe:2.3:a:reputeinfosystems:arprice_lite:2.2