Medium severity4.3NVD Advisory· Published Jan 9, 2023· Updated Jun 17, 2026
CVE-2022-4426
CVE-2022-4426
Description
The Mautic Integration for WooCommerce WordPress plugin before 1.0.3 does not have proper CSRF check when updating settings, and does not ensure that the options to be updated belong to the plugin, allowing attackers to make a logged in admin change arbitrary blog options via a CSRF attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Mautic Integration for WooCommerce WordPress plugindescription
- Range: <1.0.3
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/7d3d6b9c-d1c1-4e23-b891-7c72e4e89c38nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.