CVE-2022-29439

Description

Cross-Site Request Forgery (CSRF) vulnerability in Image Slider by NextCode plugin <= 1.1.2 at WordPress allows deleting slides.

Related CPE's

a nextcode image_slider_by_nextcode *****wordpress **

References

https://patchstack.com/database/vulnerability/baslider/wordpress-image-slider-by-nextcode-plugin-1-1-2-slider-deletion-via-cross-site-request-forgery-csrf-vulnerability

Third Party Advisory

https://wordpress.org/plugins/baslider/

Product

CvssV3 impact

Could not find any metrics

CvssV2 impact

AccessComplexity	MEDIUM
ConfidentialityImpact	NONE
AvailabilityImpact	NONE
IntegrityImpact	PARTIAL
BaseScore	4.300000190734863
VectorString	AV:N/AC:M/Au:N/C:N/I:P/A:N
Version	2.0
AccessVector	NETWORK
Authentication	NONE

Created by Yello

About Severity.io