CVE Catalog

CVE-2022-45813

MediumCVSS 5.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.02%

6th percentile — higher than 6% of all known CVEs

Summary

CVE-2022-45813 is a vulnerability in the BeRocket Advanced AJAX Product Filters plugin that has a missing authorization issue, allowing exploitation of incorrectly configured access control security levels.

Risk Assessment

Organizations may be exposed to unauthorized access to data or functionalities, potentially leading to serious security breaches.

Recommendation

It is recommended to update the plugin to the latest version and review the access control configurations to ensure adequate protection.

Original NVD description (English source)

Missing Authorization vulnerability in BeRocket Advanced AJAX Product Filters allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Advanced AJAX Product Filters: from n/a through 1.6.3.3.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS