CVE-2022-2172

Summary

The LinkWorth WordPress plugin before 3.3.4 does not implement nonce checks, which could allow attackers to make a logged in admin change settings via a CSRF attack.

Affected Software

VendorProductVersion RangeStatus
UnknownLinkWorth Plugin3.3.4 < 3.3.4affected

Weaknesses

  • CWE-352: CWE-352 Cross-Site Request Forgery (CSRF)

ADP Enrichment

CVE Program Container

Additional References

References