Lucene search
China National Vulnerability DatabaseCNVD-2022-59814HistoryMay 07, 2022 - 12:00 a.m.
WordPress LifterLMS PayPal plugin跨站脚本漏洞
2022-05-0700:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
wordpress
lifterlms
paypal
cross-site scripting
vulnerability
php
javascript
client side
EPSS
0.001
Percentile
36.9%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in versions of the WordPress LifterLMS PayPal plugin prior to 1.4.0, which stems from the plugin’s failure to clean up and escape them before exporting them back to the page. An attacker could use this vulnerability to execute JavaScript code on the client side.
Related
prion
prion
Cross site scripting
2022-05-02 16:15:00
wpvulndb
wpvulndb
LifterLMS PayPal < 1.4.0 - Reflected Cross-Site Scripting
2022-04-04 00:00:00
cvelist
cvelist
CVE-2022-1250 LifterLMS PayPal < 1.4.0 - Reflected Cross-Site Scripting
2022-05-02 16:05:50
patchstack
patchstack
osv
osv
CVE-2022-1250
2022-05-02 16:15:08
cve
cve
CVE-2022-1250
2022-05-02 16:15:08
wpexploit
wpexploit
LifterLMS PayPal < 1.4.0 - Reflected Cross-Site Scripting
2022-04-04 00:00:00
nvd
nvd
CVE-2022-1250
2022-05-02 16:15:08