28 Oct 2022
Vulnérabilité CVE-2022-3400 CVE Vulnerability
The Bricks theme for WordPress is vulnerable to authorization bypass due to a missing capability check on the bricks_save_post AJAX action in versions 1.0 to 1.5.3. This makes it possible for authenticated attackers with minimal permissions, such as a subscriber, to edit any page, post, or template on the vulnerable WordPress website. (CVSS:0.0) (Last Update:2022-10-28)
Vulnerability Details : The Bricks theme for WordPress is vulnerable to authorization bypass due to a missing capability check on the bricks_save_post AJAX action in versions 1.0 to 1.5.3. This makes it possible for authenticated attackers with minimal permissions, such as a subscriber, to edit any page, post, or template on the vulnerable WordPress website. Publish Date : 2022-10-28 Last Update Date : 2022-10-28 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2022-3400
- Number Of Affected Versions By Product
- References For CVE-2022-3400
| ||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2022-3400There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |