Vulnerability Details CVE-2022-27850
Cross-Site Request Forgery (CSRF) in Simple Ajax Chat (WordPress plugin) <= 20220115 allows an attacker to clear the chat log or delete a chat message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.0%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 4.3
References
- https://patchstack.com/database/vulnerability/simple-ajax-chat/wordpress-simple-ajax-chat-plugin-20220115-multiple-cross-site-request-forgery-csrf-vulnerability
- https://wordpress.org/plugins/simple-ajax-chat/#developers
- https://patchstack.com/database/vulnerability/simple-ajax-chat/wordpress-simple-ajax-chat-plugin-20220115-multiple-cross-site-request-forgery-csrf-vulnerability
- https://wordpress.org/plugins/simple-ajax-chat/#developers
Products affected by CVE-2022-27850
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20121110
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20121119
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20121206
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20130103
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20130104
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20130712
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20130713
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20130725
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20131105
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20131106
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20131107
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20140123
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20140305
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20140923
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20150316
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20150507
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20150808
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20151110
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20160401
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20160408
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20160811
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20161116
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20170731
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20171023
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20171103
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20171104
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20171105
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20171106
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20180508
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20180820
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20181009
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20181114
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20190220
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20190308
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20190429
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20190902
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20190903
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20191105
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20200315
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20200808
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20201112
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20201124
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20210210
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20210714
-
cpe:2.3:a:plugin-planet:simple_ajax_chat:20220115