Lucene search
China National Vulnerability DatabaseCNVD-2022-56246HistoryJul 13, 2022 - 12:00 a.m.
WordPress Shortcodes and extra features for Phlox plugin跨站脚本漏洞
2022-07-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
43.6%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. WordPress Shortcodes and extra features for Phlox plugin versions prior to 2.9.8 contain a cross-site scripting vulnerability that stems from a failure to clean and escape parameters before they are output back to the response. The vulnerability is caused by a failure to clean and escape parameters before exporting them back to the response, which can be exploited to perform cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress shortcodes and extra features for phlox plugin | lt | 2.9.8 |
Related
nuclei
nuclei
patchstack
patchstack
prion
prion
Cross site scripting
2022-07-11 13:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-1910
2022-07-11 13:15:08
cve
cve
CVE-2022-1910
2022-07-11 13:15:08