CVE-2022-34654

MEDIUM

Manage Notification E-mails < 1.8.2 - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-Site Request Forgery (CSRF) in Virgial Berveling's Manage Notification E-mails plugin <= 1.8.2 on WordPress.

Scores

CVSS v3 4.3
EPSS 0.0029
EPSS Percentile 20.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-352
Status published
Products (2)
freeamigos/manage_notification_e-mails < 1.8.3
Virgial Berveling/Manage Notification E-mails (WordPress plugin) < 1.8.2
Published Nov 28, 2022
Tracked Since Feb 18, 2026