Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-87353
HistoryOct 12, 2022 - 12:00 a.m.

WordPress Advanced Comment Form Cross-Site Scripting Vulnerability

2022-10-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
8

0.001 Low

EPSS

Percentile

24.8%

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. versions prior to WordPress Advanced Comment Form 1.2.1 have a cross-site scripting vulnerability that stems from unfiltered and escaped input statements, which can be exploited by attackers to inject cross-site code and launch XSS attacks.

CPENameOperatorVersion
wordpress advanced comment formlt1.2.1

0.001 Low

EPSS

Percentile

24.8%