Lucene search
China National Vulnerability DatabaseCNVD-2022-56489HistoryJun 15, 2022 - 12:00 a.m.
WordPress Themify plugin cross-site scripting vulnerability
2022-06-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
0.001 Low
EPSS
Percentile
40.3%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions of the WordPress Themify plugin prior to 1.3.8. The vulnerability stems from the fact that page parameters are not cleaned and escaped before being exported back to the properties of the administrative page, and an attacker could exploit this vulnerability to cause reflected cross-site scripting.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress themify plugin | lt | 1.3.8 |
Related
patchstack
patchstack
prion
prion
Cross site scripting
2022-06-13 13:15:00
cve
cve
CVE-2022-1532
2022-06-13 13:15:10
wpexploit
wpexploit
wpvulndb
wpvulndb
cvelist
cvelist
nvd
nvd
CVE-2022-1532
2022-06-13 13:15:10
kitploit
kitploit