Medium severity4.3NVD Advisory· Published Aug 22, 2022· Updated Jun 17, 2026
CVE-2022-2276
CVE-2022-2276
Description
The WP Edit Menu WordPress plugin before 1.5.0 does not have authorisation and CSRF in an AJAX action, which could allow unauthenticated attackers to delete arbitrary posts/pages from the blog
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/WP Edit Menu plugindescription
- Range: <1.5.0
Patches
Vulnerability mechanics
References
2- plugins.trac.wordpress.org/changesetnvdPatchThird Party Advisory
- wpscan.com/vulnerability/92de9c1b-48dd-4a5f-bbb3-455f8f172b09nvdExploitPatchThird Party Advisory
News mentions
0No linked articles in our index yet.