CVE Catalog

CVE-2022-47150

MediumCVSS 4.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.01%

2th percentile — higher than 2% of all known CVEs

Summary

CSRF vulnerability in weDevs WooCommerce Conversion Tracking allows Cross-Site Request Forgery. This issue affects versions from n/a through 2.0.10.

Risk Assessment

An attacker could exploit this vulnerability to perform unauthorized actions on behalf of users, potentially leading to data loss or unauthorized access.

Recommendation

It is recommended to update the WooCommerce Conversion Tracking plugin to the latest version to mitigate the risk associated with this vulnerability.

Original NVD description (English source)

Cross-Site request forgery (CSRF) vulnerability in weDevs WooCommerce Conversion Tracking allows Cross Site Request Forgery. This issue affects WooCommerce Conversion Tracking: from n/a through 2.0.10.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS