Lucene search
China National Vulnerability DatabaseCNVD-2022-19787HistoryMar 09, 2022 - 12:00 a.m.
WordPress YOP Poll Plugin Cross-Site Scripting Vulnerability
2022-03-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
15
0.001 Low
EPSS
Percentile
24.9%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress YOP Poll Plugin version 6.3.5 before the cross-site scripting vulnerability, the vulnerability stems from the plugin in the output of certain settings before they are not cleaned and escaped, an attacker can use the vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| WordPress1 YOP Poll Plugin | lt | 6.3.5 |
Related
prion
prion
Cross site scripting
2022-03-07 09:15:00
cvelist
cvelist
CVE-2022-0205 YOP Poll < 6.3.5 - Author+ Stored Cross-Site Scripting
2022-03-07 08:16:23
wpexploit
wpexploit
YOP Poll < 6.3.5 - Author+ Stored Cross-Site Scripting
2022-02-14 00:00:00
nvd
nvd
CVE-2022-0205
2022-03-07 09:15:08
wpvulndb
wpvulndb
YOP Poll < 6.3.5 - Author+ Stored Cross-Site Scripting
2022-02-14 00:00:00
cve
cve
CVE-2022-0205
2022-03-07 09:15:08