Lucene search
China National Vulnerability DatabaseCNVD-2022-54969HistoryJun 15, 2022 - 12:00 a.m.
WordPress WP Athletics plugin cross-site scripting vulnerability (CNVD-2022-54969)
2022-06-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
40.2%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Athletics plugin version 1.1.7 and prior versions are vulnerable to a cross-site scripting vulnerability that results from the plugin’s failure to clean up and escape gender parameters before exporting back to the admin page. parameter before outputting back to the admin page. An attacker could use this vulnerability to launch a reflected cross-site scripting attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wp athletics plugin | le | 1.1.7 |
Related
prion
prion
Cross site scripting
2022-06-13 13:15:00
cve
cve
CVE-2022-1773
2022-06-13 13:15:12
nvd
nvd
CVE-2022-1773
2022-06-13 13:15:12
cvelist
cvelist
CVE-2022-1773 WP Athletics <= 1.1.7 - Reflected Cross-Site Scripting
2022-06-13 12:42:46
wpexploit
wpexploit
WP Athletics <= 1.1.7 - Reflected Cross-Site Scripting
2022-05-17 00:00:00
patchstack
patchstack
wpvulndb
wpvulndb
WP Athletics <= 1.1.7 - Reflected Cross-Site Scripting
2022-05-17 00:00:00