{"uuid": "01543119-6199-486d-957d-8dd166e88c6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2387", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15003", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-2387\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Easy Digital Downloads WordPress plugin before 3.0 does not have CSRF check in place when deleting payment history, and does not ensure that the post to be deleted is actually a payment history. As a result, attackers could make a logged in admin delete arbitrary post via a CSRF attack\n\ud83d\udccf Published: 2022-11-07T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-05T20:26:52.592Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/db3c3c78-1724-4791-9ab6-ebb2e8a4c8b8", "creation_timestamp": "2025-05-05T21:20:20.000000Z"}