Lucene search
China National Vulnerability DatabaseCNVD-2022-66596HistoryMar 02, 2022 - 12:00 a.m.
WordPress WP Accessibility Helper plugin cross-site scripting vulnerability
2022-03-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
41.5%
WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports setting up personal blogging sites on servers with PHP and MySQL.A cross-site scripting vulnerability exists in versions of the WordPress WP Accessibility Helper plugin prior to 0.6.0.7. The vulnerability stems from the plugin’s failure to clean up and escape wahi parameters before decoding the base64 values in the output page. An attacker could exploit this vulnerability to cause a reflection cross-site scripting issue.
| CPE | Name | Operator | Version |
|---|---|---|---|
| WordPress WP Accessibility Helper plugin <0. | eq | 6.0.7 |
Related
wpvulndb
wpvulndb
nuclei
nuclei
WordPress Accessibility Helper <0.6.0.7 - Cross-Site Scripting
2022-02-19 11:13:05
wpexploit
wpexploit
patchstack
patchstack
prion
prion
Cross site scripting
2022-02-28 09:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-0150
2022-02-28 09:15:08
cve
cve
CVE-2022-0150
2022-02-28 09:15:08