Lucene search
China National Vulnerability DatabaseCNVD-2022-66617HistoryMar 16, 2022 - 12:00 a.m.
WordPress Simple Tracking plugin cross-site scripting vulnerability
2022-03-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
16
0.001 Low
EPSS
Percentile
24.8%
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. WordPress plugin is an application plugin for WordPress. A cross-site scripting vulnerability exists in versions of WordPress Simple Tracking plugin prior to 1.7, which stems from the plugin’s failure to clean and escape its settings, and could be exploited by attackers to perform cross-site scripting attacks. The vulnerability is caused by the plugin’s failure to clean and escape its settings, which can be exploited to perform cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress simple tracking plugin | lt | 1.7 |
Related
nvd
nvd
CVE-2022-0700
2022-03-14 15:15:10
wpexploit
wpexploit
Simple Theme Options < 1.7 - Admin+ Stored Cross-Site Scripting
2022-02-21 00:00:00
prion
prion
Cross site scripting
2022-03-14 15:15:00
cve
cve
CVE-2022-0700
2022-03-14 15:15:10
wpvulndb
wpvulndb
Simple Theme Options < 1.7 - Admin+ Stored Cross-Site Scripting
2022-02-21 00:00:00
cvelist
cvelist
patchstack
patchstack