Lucene search
China National Vulnerability DatabaseCNVD-2022-85333HistoryNov 30, 2022 - 12:00 a.m.
WordPress Donations via PayPal plugin cross-site scripting vulnerability
2022-11-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
wordpress
paypal
xss
vulnerability
php
administrator
0.001 Low
EPSS
Percentile
24.9%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. WordPress Donations via PayPal plugin version 1.9.9 has a cross-site scripting vulnerability that stems from failure to clean and escape certain settings, including the disabled unfiltered_html feature, which can be exploited by a highly privileged attacker such as an administrator to launch a stored cross-site scripting attack. attacker can use the vulnerability to launch a stored cross-site scripting attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress donations via paypal plugin | lt | 1.9.9 |
Related
prion
prion
Cross site scripting
2022-11-28 14:15:00
nvd
nvd
CVE-2022-3822
2022-11-28 14:15:14
wpvulndb
wpvulndb
Donations via PayPal < 1.9.9 - Admin+ Stored XSS
2022-11-04 00:00:00
cvelist
cvelist
CVE-2022-3822 Donations via PayPal < 1.9.9 - Admin+ Stored XSS
2022-11-28 13:47:20
cve
cve
CVE-2022-3822
2022-11-28 14:15:14
wpexploit
wpexploit
Donations via PayPal < 1.9.9 - Admin+ Stored XSS
2022-11-04 00:00:00