CVE-2022-1761

Summary

The Peter’s Collaboration E-mails WordPress plugin through 2.2.0 is vulnerable to CSRF due to missing nonce checks. This allows the change of its settings, which can be used to lower the required user level, change texts, the used email address and more.

Affected Software

VendorProductVersion RangeStatus
UnknownPeter’s Collaboration E-mails2.2.0 <= 2.2.0affected

Weaknesses

  • CWE-352: CWE-352 Cross-Site Request Forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

References