Lucene search
China National Vulnerability DatabaseCNVD-2022-19790HistoryMar 09, 2022 - 12:00 a.m.
WordPress White Label CMS Plugin Cross-Site Scripting Vulnerability
2022-03-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
0.001 Low
EPSS
Percentile
41.6%
WordPress is a blogging platform developed by the Wordpress Foundation using the PHP language. A cross-site scripting vulnerability exists in versions of the WordPress White Label CMS Plugin prior to 2.2.9, which stems from the plugin’s failure to clean and validate the wlcms[_login_custom_js] parameter. An attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress white label cms plugin | lt | 2.2.9 |
Related
cve
cve
CVE-2022-0422
2022-03-07 09:15:09
wpvulndb
wpvulndb
White Label MS < 2.2.9 - Reflected Cross-Site Scripting
2022-02-07 00:00:00
nvd
nvd
CVE-2022-0422
2022-03-07 09:15:09
cvelist
cvelist
CVE-2022-0422 White Label MS < 2.2.9 - Reflected Cross-Site Scripting
2022-03-07 08:16:34
prion
prion
Cross site scripting
2022-03-07 09:15:00
nuclei
nuclei
WordPress White Label CMS <2.2.9 - Cross-Site Scripting
2022-04-29 06:39:46
openvas
openvas
WordPress White Label CMS Plugin < 2.2.9 XSS Vulnerability
2022-03-22 00:00:00
wpexploit
wpexploit
White Label MS < 2.2.9 - Reflected Cross-Site Scripting
2022-02-07 00:00:00