Unrated severityNVD Advisory· Published Apr 20, 2022· Updated Aug 3, 2024
CVE-2022-27629
CVE-2022-27629
Description
Cross-site request forgery (CSRF) vulnerability in 'MicroPayments - Paid Author Subscriptions, Content, Downloads, Membership' versions prior to 1.9.6 allows a remote unauthenticated attacker to hijack the authentication of an administrator and perform unintended operation via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.9.6
- VideoWhisper/MicroPayments - Paid Author Subscriptions, Content, Downloads, Membershipv5Range: versions prior to 1.9.6
Patches
Vulnerability mechanics
References
3- jvn.jp/en/jp/JVN31606885/index.htmlmitrex_refsource_MISC
- plugins.trac.wordpress.org/changesetmitrex_refsource_MISC
- wordpress.org/plugins/paid-membership/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.