Lucene search
China National Vulnerability DatabaseCNVD-2022-62180HistoryJun 30, 2022 - 12:00 a.m.
WordPress Ultimate WooCommerce CSV Importer plugin跨站脚本漏洞
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
0.001 Low
EPSS
Percentile
40.4%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Ultimate WooCommerce CSV Importer plugin version 2.0 and prior versions are vulnerable to a cross-site scripting vulnerability caused by a failure to clean and escape imported data before exporting it back to the page. before exporting it back to the page. An attacker could use this vulnerability to execute a reflected cross-site scripting attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress ultimate woocommerce csv importer plugin | le | 2.0 |
Related
prion
prion
Cross site scripting
2022-06-27 09:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-1470
2022-06-27 09:15:09
cve
cve
CVE-2022-1470
2022-06-27 09:15:09
wpvulndb
wpvulndb
Ultimate WooCommerce CSV Importer <= 2.0 - Reflected Cross-Site Scripting
2022-06-02 00:00:00
wpexploit
wpexploit
Ultimate WooCommerce CSV Importer <= 2.0 - Reflected Cross-Site Scripting
2022-06-02 00:00:00