Lucene search
China National Vulnerability DatabaseCNVD-2022-56238HistoryJul 13, 2022 - 12:00 a.m.
WordPress FoxyShop plugin cross-site scripting vulnerability
2022-07-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
0.001 Low
EPSS
Percentile
40.2%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of the WordPress FoxyShop plugin prior to 4.8.2, which stems from a failure to clean and escape parameters before exporting them back to the administration page. vulnerability can be exploited to perform cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress foxyshop plugin | lt | 4.8.2 |
Related
nvd
nvd
CVE-2022-1220
2022-07-11 13:15:08
wpvulndb
wpvulndb
FoxyShop < 4.8.2 - Reflected Cross-Site Scripting
2022-06-16 00:00:00
cve
cve
CVE-2022-1220
2022-07-11 13:15:08
wpexploit
wpexploit
FoxyShop < 4.8.2 - Reflected Cross-Site Scripting
2022-06-16 00:00:00
cvelist
cvelist
CVE-2022-1220 FoxyShop < 4.8.2 - Reflected Cross-Site Scripting
2022-07-11 12:55:40
prion
prion
Cross site scripting
2022-07-11 13:15:00