PatchSiren cyber security CVE debrief
CVE-2022-45813 BeRocket CVE debrief
CVE-2022-45813 is a MEDIUM severity vulnerability in Advanced AJAX Product Filters, a WordPress plugin. The vulnerability allows for Exploiting Incorrectly Configured Access Control Security Levels due to a Missing Authorization issue. This issue affects Advanced AJAX Product Filters versions from n/a through 1.6.3.3.
- Vendor
- BeRocket
- Product
- Advanced AJAX Product Filters
- CVSS
- MEDIUM 5.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-11
Who should care
Users of Advanced AJAX Product Filters, specifically those using versions from n/a through 1.6.3.3, should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The vulnerability has a CVSS score of 5.4 and is classified as CWE-862. The CVSS vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N.
Defensive priority
MEDIUM
Recommended defensive actions
- Update Advanced AJAX Product Filters to a version beyond 1.6.3.3.
- Review and adjust access control configurations for the plugin.
Evidence notes
Evidence for this CVE comes from the National Vulnerability Database (NVD) and Patchstack.
Official resources
-
CVE-2022-45813 CVE record
CVE.org
-
CVE-2022-45813 NVD detail
NVD
-
Source item URL
nvd_modified
- Mitigation or vendor reference
CVE-2022-45813 was published on 2026-06-11T12:16:28.563Z and modified on 2026-06-11T14:42:47.007Z.