What is CVE-2026-3332 — CSRF in Xhanch – My Advanced Settings?

CVE-2026-3332 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Xhanch – My Advanced Settings WordPress plugin, allowing attackers to modify settings via forged requests.

Am I affected by CVE-2026-3332 in Xhanch – My Advanced Settings?

You are affected if you are using Xhanch – My Advanced Settings plugin versions 1.0.0 through 1.1.2.

How do I fix CVE-2026-3332 in Xhanch – My Advanced Settings?

Upgrade the Xhanch – My Advanced Settings plugin to version 1.1.3 or later. Consider WAF rules as a temporary workaround.

Is CVE-2026-3332 being actively exploited?

No active exploitation has been confirmed at this time, but the vulnerability is considered potentially exploitable.

Where can I find the official Xhanch – My Advanced Settings advisory for CVE-2026-3332?

Refer to the plugin developer's website or WordPress plugin repository for the official advisory and update information.

CVE-2026-3332 — Vulnerability Details

NEXTGUARD

Escanear grátis

CVE-2026-3332 — Vulnerability Details | NextGuard

Passos de Detecçãotraduzindo…

• wordpress / composer / npm:

grep -r 'xms_setting()' /var/www/html/wp-content/plugins/xhanch-my-advanced-settings/

• generic web:

curl -I https://your-wordpress-site.com/wp-admin/admin-ajax.php?action=xms_setting&setting_name=favicon_url | grep -i '200 OK'

Xhanch - My Advanced Settings <= 1.1.2 - Cross-Site Request Forgery para Atualização de Configurações

Impacto e Cenários de Ataquetraduzindo…

Contexto de Exploraçãotraduzindo…

Quem Está em Riscotraduzindo…

Passos de Detecçãotraduzindo…

Linha do Tempo do Ataque

Inteligência de Ameaças

Software Afetado

Classificação de Fraqueza (CWE)

Linha do tempo

Mitigação e Soluções Alternativastraduzindo…

Como corrigir

Boletim de Segurança CVE

Perguntas frequentestraduzindo…

What is CVE-2026-3332 — CSRF in Xhanch – My Advanced Settings?

Am I affected by CVE-2026-3332 in Xhanch – My Advanced Settings?

How do I fix CVE-2026-3332 in Xhanch – My Advanced Settings?

Is CVE-2026-3332 being actively exploited?

Where can I find the official Xhanch – My Advanced Settings advisory for CVE-2026-3332?

Informações do pacote

Seu projeto está afetado?

Detecte esta CVE no seu projeto