CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1818

The Multi-page Toolkit WordPress plugin through 2.6 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and lead to Stored Cross-Site Scripting due to the lack of sanitisation and escaping as well

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.2%

CVSS Severity

CVSS v3 Score 5.4

CVSS v2 Score 3.5

References

Products affected by CVE-2022-1818

Multi-Page Toolkit Project » Multi-Page Toolkit » Version: N/A

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:-
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 1.0

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:1.0
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 1.1

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:1.1
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 1.2

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:1.2
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 2.0

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:2.0
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 2.1

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:2.1
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 2.4

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:2.4
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 2.5

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:2.5
Multi-Page Toolkit Project » Multi-Page Toolkit » Version: 2.6

cpe:2.3:a:multi-page_toolkit_project:multi-page_toolkit:2.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1818

Products

Pricing

Contact Us