Add Multiple Marker <= 1.3 – Settings Update via CSRF | CVE 2022-45080

Affects Plugins

add-multiple-marker

No known fix

References

CVE

CVE-2022-45080

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CWE-352

CVSS

4.3 (medium)

Miscellaneous

Original Researcher

ptsfence

Verified

No

WPVDB ID

41936b63-7550-43b4-bbd5-2d239840bec0

Timeline

Publicly Published

2022-11-11 (about 3 years ago)

Added

2023-04-24 (about 3 years ago)

Last Updated

2026-02-03 (about 3 months ago)

Other

Published

Title

Published

2025-05-07

Title

Accept Donations with PayPal < 1.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Published

2025-09-22

Title

SEO Backlink Monitor <= 1.6.0 - Cross-Site Request Forgery

Published

2022-05-30

Title

Cross-Linker <= 3.0.1.9 - Arbitrary Cross-Link Creation via CSRF

Published

2023-01-18

Title

DNUI <= 2.8.1 - Deletion of images through CSRF

Published

2025-06-05

Title

WP Page Loading < 1.0.7 - Cross-Site Request Forgery