Back to search
CVE-2022-3082
Published: Oct 17, 2022
Modified: May 13, 2025
PUBLISHED
Description
The miniOrange Discord Integration WordPress plugin before 2.1.6 does not have authorisation and CSRF in some of its AJAX actions, allowing any logged in users, such as subscriber to call them, and disable the app for example
| Vendor | Product | Versions |
|---|---|---|
Unknown | miniOrange Discord Integration | affected 0 - < 2.1.6 |
References
https://wpscan.com/vulnerability/a91d0501-c2a9-4c6c-b5da-b3fc29442a4f
exploit
vdb-entry
technical-description
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now