Lucene search
China National Vulnerability DatabaseCNVD-2022-85331HistoryNov 30, 2022 - 12:00 a.m.
WordPress Beautiful Cookie Consent Banner plugin cross-site scripting vulnerability
2022-11-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
wordpress
beautiful cookie consent banner
cross-site scripting
vulnerability
php language
administrator
stored attack
unfiltered html
wordpress foundation
0.001 Low
EPSS
Percentile
22.8%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions of the WordPress Beautiful Cookie Consent Banner plugin prior to 2.9.1. The vulnerability stems from failure to clean and escape certain settings, including the disabled unfiltered_html feature, and can be exploited by a highly privileged attacker such as an administrator to launch a stored cross-site scripting attack. attacker can use the vulnerability to launch a stored cross-site scripting attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress beautiful cookie consent banner plugin | lt | 2.9.1 |
Related
prion
prion
Cross site scripting
2022-11-28 14:15:00
cvelist
cvelist
CVE-2022-3823 Beautiful Cookie Consent Banner < 2.9.1 - Admin+ Stored XSS
2022-11-28 13:47:24
wpexploit
wpexploit
Beautiful Cookie Consent Banner < 2.9.1 - Admin+ Stored XSS
2022-11-03 00:00:00
cve
cve
CVE-2022-3823
2022-11-28 14:15:14
wpvulndb
wpvulndb
Beautiful Cookie Consent Banner < 2.9.1 - Admin+ Stored XSS
2022-11-03 00:00:00
patchstack
patchstack
nvd
nvd
CVE-2022-3823
2022-11-28 14:15:14