CVE-2022-40488
MEDIUM6.5EPSS 0.33%ProcessWire vulnerable to Cross-Site Request Forgery
Published: 10/31/2022Modified: 11/8/2023
Description
ProcessWire v3.0.200 was discovered to contain a Cross-Site Request Forgery (CSRF).
Affected packages (1)
- Packagist/processwire/processwirefrom 0, <= 3.0.200
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |