Vulnerability Details CVE-2022-1967
The WP Championship WordPress plugin before 9.3 is lacking CSRF checks in various places, allowing attackers to make a logged in admin perform unwanted actions, such as create and delete arbitrary teams as well as update the plugin's settings. Due to the lack of sanitisation and escaping, it could also lead to Stored Cross-Site Scripting issues
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.9%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
Products affected by CVE-2022-1967
-
cpe:2.3:a:wp-championship_project:wp-championship:0.6
-
cpe:2.3:a:wp-championship_project:wp-championship:0.7
-
cpe:2.3:a:wp-championship_project:wp-championship:0.8
-
cpe:2.3:a:wp-championship_project:wp-championship:0.9
-
cpe:2.3:a:wp-championship_project:wp-championship:1.0
-
cpe:2.3:a:wp-championship_project:wp-championship:1.1
-
cpe:2.3:a:wp-championship_project:wp-championship:1.2
-
cpe:2.3:a:wp-championship_project:wp-championship:1.3
-
cpe:2.3:a:wp-championship_project:wp-championship:1.4
-
cpe:2.3:a:wp-championship_project:wp-championship:1.5
-
cpe:2.3:a:wp-championship_project:wp-championship:1.6
-
cpe:2.3:a:wp-championship_project:wp-championship:1.7
-
cpe:2.3:a:wp-championship_project:wp-championship:1.8
-
cpe:2.3:a:wp-championship_project:wp-championship:1.9
-
cpe:2.3:a:wp-championship_project:wp-championship:2.0
-
cpe:2.3:a:wp-championship_project:wp-championship:2.1
-
cpe:2.3:a:wp-championship_project:wp-championship:2.2
-
cpe:2.3:a:wp-championship_project:wp-championship:2.3
-
cpe:2.3:a:wp-championship_project:wp-championship:2.4
-
cpe:2.3:a:wp-championship_project:wp-championship:2.5
-
cpe:2.3:a:wp-championship_project:wp-championship:2.6
-
cpe:2.3:a:wp-championship_project:wp-championship:2.7
-
cpe:2.3:a:wp-championship_project:wp-championship:2.8
-
cpe:2.3:a:wp-championship_project:wp-championship:2.9
-
cpe:2.3:a:wp-championship_project:wp-championship:3.0
-
cpe:2.3:a:wp-championship_project:wp-championship:3.1
-
cpe:2.3:a:wp-championship_project:wp-championship:3.2
-
cpe:2.3:a:wp-championship_project:wp-championship:3.3
-
cpe:2.3:a:wp-championship_project:wp-championship:3.4
-
cpe:2.3:a:wp-championship_project:wp-championship:3.5
-
cpe:2.3:a:wp-championship_project:wp-championship:3.6
-
cpe:2.3:a:wp-championship_project:wp-championship:3.7
-
cpe:2.3:a:wp-championship_project:wp-championship:3.8
-
cpe:2.3:a:wp-championship_project:wp-championship:3.9
-
cpe:2.3:a:wp-championship_project:wp-championship:4.0
-
cpe:2.3:a:wp-championship_project:wp-championship:4.1
-
cpe:2.3:a:wp-championship_project:wp-championship:4.2
-
cpe:2.3:a:wp-championship_project:wp-championship:4.3
-
cpe:2.3:a:wp-championship_project:wp-championship:4.4
-
cpe:2.3:a:wp-championship_project:wp-championship:4.5
-
cpe:2.3:a:wp-championship_project:wp-championship:4.6
-
cpe:2.3:a:wp-championship_project:wp-championship:4.7
-
cpe:2.3:a:wp-championship_project:wp-championship:4.8
-
cpe:2.3:a:wp-championship_project:wp-championship:4.9
-
cpe:2.3:a:wp-championship_project:wp-championship:5.0
-
cpe:2.3:a:wp-championship_project:wp-championship:5.1
-
cpe:2.3:a:wp-championship_project:wp-championship:5.2
-
cpe:2.3:a:wp-championship_project:wp-championship:5.3
-
cpe:2.3:a:wp-championship_project:wp-championship:5.4
-
cpe:2.3:a:wp-championship_project:wp-championship:5.5
-
cpe:2.3:a:wp-championship_project:wp-championship:5.6
-
cpe:2.3:a:wp-championship_project:wp-championship:5.7
-
cpe:2.3:a:wp-championship_project:wp-championship:5.8
-
cpe:2.3:a:wp-championship_project:wp-championship:5.9
-
cpe:2.3:a:wp-championship_project:wp-championship:6.0
-
cpe:2.3:a:wp-championship_project:wp-championship:6.1
-
cpe:2.3:a:wp-championship_project:wp-championship:6.2
-
cpe:2.3:a:wp-championship_project:wp-championship:6.3
-
cpe:2.3:a:wp-championship_project:wp-championship:6.4
-
cpe:2.3:a:wp-championship_project:wp-championship:6.5
-
cpe:2.3:a:wp-championship_project:wp-championship:6.6
-
cpe:2.3:a:wp-championship_project:wp-championship:6.7
-
cpe:2.3:a:wp-championship_project:wp-championship:6.8
-
cpe:2.3:a:wp-championship_project:wp-championship:6.9
-
cpe:2.3:a:wp-championship_project:wp-championship:7.0
-
cpe:2.3:a:wp-championship_project:wp-championship:7.1
-
cpe:2.3:a:wp-championship_project:wp-championship:7.2
-
cpe:2.3:a:wp-championship_project:wp-championship:7.3
-
cpe:2.3:a:wp-championship_project:wp-championship:7.4
-
cpe:2.3:a:wp-championship_project:wp-championship:7.5
-
cpe:2.3:a:wp-championship_project:wp-championship:7.6
-
cpe:2.3:a:wp-championship_project:wp-championship:7.7
-
cpe:2.3:a:wp-championship_project:wp-championship:7.8
-
cpe:2.3:a:wp-championship_project:wp-championship:7.9
-
cpe:2.3:a:wp-championship_project:wp-championship:8.0
-
cpe:2.3:a:wp-championship_project:wp-championship:8.1
-
cpe:2.3:a:wp-championship_project:wp-championship:8.2
-
cpe:2.3:a:wp-championship_project:wp-championship:8.3
-
cpe:2.3:a:wp-championship_project:wp-championship:8.4
-
cpe:2.3:a:wp-championship_project:wp-championship:8.5
-
cpe:2.3:a:wp-championship_project:wp-championship:8.6
-
cpe:2.3:a:wp-championship_project:wp-championship:8.7
-
cpe:2.3:a:wp-championship_project:wp-championship:8.8
-
cpe:2.3:a:wp-championship_project:wp-championship:8.9
-
cpe:2.3:a:wp-championship_project:wp-championship:9.0
-
cpe:2.3:a:wp-championship_project:wp-championship:9.1
-
cpe:2.3:a:wp-championship_project:wp-championship:9.2