CVE-2022-4363

Wholesale Market <= 2.2.2 - Settings Update via CSRF

Description

The Wholesale Market WordPress plugin before 2.2.2, Wholesale Market for WooCommerce WordPress plugin before 2.0.1 have a flawed CSRF check when updating their settings, which could allow attackers to make a logged in admin update them via a CSRF attack

INFO

Published Date :

2025-05-16T20:33:45.656Z

Last Modified :

2025-05-17T02:22:31.473Z

Source :

WPScan

AFFECTED PRODUCTS

The following products are affected by CVE-2022-4363 vulnerability.

Vendors	Products
Cedcommerce	Wholesale Market Wholesale Market For Woocommerce

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-4363.

URL	Resource
https://wpscan.com/vulnerability/734dba0b-f550-4372-884a-d42f7b0c00c7/

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact