CVE-2022-0745

CVE-2022-0745: Like Button Rating < 2.6.45 - Arbitrary e-mail Sending

Vendor Unknown
Product Like Button Rating ♥ LikeBtn
Weakness CWE-862 · Missing authorization
Published June 13, 2022
Last update August 2, 2024

CVSS base score

What the vulnerability does

01Description

The Like Button Rating WordPress plugin before 2.6.45 allows any logged-in user, such as subscriber, to send arbitrary e-mails to any recipient, with any subject and body

Key dates

02Disclosure timeline

June 13, 2022 CVE published
August 2, 2024 Record updated