cbcvebase.
CVE-2022-40128
published 2022-11-08

CVE-2022-40128: Cross-Site Request Forgery (CSRF) vulnerability in Advanced Order Export For WooCommerce plugin <= 3.3.2 on WordPress leading to export file download.

PriorityP427medium6.5CVSS 3.1
AVNACLPRNUIRSUCHINAN
EPSS
0.31%
23.1th percentile
Cross-Site Request Forgery (CSRF) vulnerability in Advanced Order Export For WooCommerce plugin <= 3.3.2 on WordPress leading to export file download.

Affected

2 ranges
VendorProductVersion rangeFixed in
algolplusadvanced_order_export_for_woocommerce< 3.3.33.3.3
algolplusadvanced_order_export_for_woocommerce<= 3.3.2
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.