CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Integration For Szamlazz.hu & Gravity Forms Project: >> Integration For Szamlazz.hu & Gravity Forms >> 1.2.6 Security Vulnerabilities

CVE-2022-3154

The Woo Billingo Plus WordPress plugin before 4.4.5.4, Integration for Billingo & Gravity Forms WordPress plugin before 1.0.4, Integration for Szamlazz.hu & Gravity Forms WordPress plugin before 1.2.7 are lacking CSRF checks in various AJAX actions, which could allow attackers to make logged in Shop Managers and above perform unwanted actions, such as deactivate the plugin's license

CVSS Score

7.1

EPSS Score

0.001

Published

2022-10-10

Page 1

Vulnerabilities

Vulnerable Software

Integration For Szamlazz.hu & Gravity Forms Project: >> Integration For Szamlazz.hu & Gravity Forms >> 1.2.6 Security Vulnerabilities

Products

Pricing

Contact Us