Score
4.3
Medium
Date publish
21-02-2024
Versiones afectadas
Description
Cross-Site Request Forgery (CSRF) vulnerability in Frédéric GILLES FG PrestaShop to WooCommerce, Frédéric GILLES FG Drupal to WordPress, Frédéric GILLES FG Joomla to WordPress.This issue affects FG PrestaShop to WooCommerce: from n/a through 4.44.3; FG Drupal to WordPress: from n/a through 3.67.0; FG Joomla to WordPress: from n/a through 4.15.0.
References
Metrics
| cvssMetricV31 |
|---|
| source | audit@patchstack.com |
| type | Secondary |
| version | 3.1 |
| vectorString | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
| baseScore | 4.3 |
| baseSeverity | MEDIUM |
| attackVector | NETWORK |
| attackComplexity | LOW |
| privilegesRequired | NONE |
| userInteraction | REQUIRED |
| scope | UNCHANGED |
| confidentialityImpact | NONE |
| integrityImpact | LOW |
| availabilityImpact | NONE |
| exploitabilityScore | 2.8 |
| impactScore | 1.4 |
