Vulnerability Details CVE-2022-38104
Auth. WordPress Options Change (siteurl, users_can_register, default_role, admin_email and new_admin_email) vulnerability in Biplob Adhikari's Accordions – Multiple Accordions or FAQs Builder plugin (versions <= 2.0.3 on WordPress.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 55.0%
CVSS Severity
CVSS v3 Score 7.2
References
- https://patchstack.com/database/vulnerability/accordions-or-faqs/wordpress-accordions-plugin-2-0-3-authenticated-wordpress-options-change-vulnerability?_s_id=cve
- https://wordpress.org/plugins/accordions-or-faqs/#developers
- https://patchstack.com/database/vulnerability/accordions-or-faqs/wordpress-accordions-plugin-2-0-3-authenticated-wordpress-options-change-vulnerability?_s_id=cve
- https://wordpress.org/plugins/accordions-or-faqs/#developers
Products affected by CVE-2022-38104
-
cpe:2.3:a:oxilab:accordions:-
-
cpe:2.3:a:oxilab:accordions:1.0
-
cpe:2.3:a:oxilab:accordions:1.1
-
cpe:2.3:a:oxilab:accordions:1.2
-
cpe:2.3:a:oxilab:accordions:2.0.1
-
cpe:2.3:a:oxilab:accordions:2.0.2
-
cpe:2.3:a:oxilab:accordions:2.0.3