{"uuid": "9b605906-681f-4e11-95d5-afdb2c0f3468", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4386", "type": "seen", "source": "https://t.me/arpsyndicate/581", "content": "#ExploitObserverAlert\n\nCVE-2022-4386\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2022-4386. The Intuitive Custom Post Order WordPress plugin before 3.1.4 lacks CSRF protection in its update-menu-order ajax action, allowing an attacker to trick any user to change the menu order via a CSRF attack\n\nFIRST-EPSS: 0.000460000\nNVD-IS: 1.4\nNVD-ES: 2.8", "creation_timestamp": "2023-11-26T01:39:22.000000Z"}