CVE-2022-45069 MEDIUM

CVE-2022-45069: WordPress Crowdsignal Dashboard plugin <= 3.0.9 - Privilege Escalation vulnerability

Vendor Automattic, Inc.

Product Crowdsignal Dashboard – Polls, Surveys & more (WordPress plugin)

Weakness CWE-264

Published November 17, 2022

Last update April 28, 2026

CVSS base score

6.3/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality Low

Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

Auth. (contributor+) Privilege Escalation vulnerability in Crowdsignal Dashboard plugin <= 3.0.9 on WordPress.

Key dates

November 17, 2022 CVE published

April 28, 2026 Record updated

External resources

Related vulnerabilities

CVE CVE-2022-45069

CWE CWE-264

CVSS 6.3 / MEDIUM

Vendor Automattic, Inc.

Product Crowdsignal Dashboard – Polls, Surveys & more (WordPress plugin)

Affected ≥ <= 3.0.9 and ≤ 3.0.9