Lucene search
China National Vulnerability DatabaseCNVD-2022-87376HistoryOct 11, 2022 - 12:00 a.m.
WordPress DSGVO All in one for WP cross-site scripting vulnerability
2022-10-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
0.001 Low
EPSS
Percentile
24.9%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress DSGVO All in one for WP 4.2 has a cross-site scripting vulnerability that stems from the fact that certain settings are not cleaned and escaped, and even if the unfiltered_html feature is disabled, a highly privileged attacker such as an administrator can use the vulnerability to inject cross-site code and launch XSS attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress dsgvo all in one for wp | lt | 4.2 |
Related
ubuntucve
ubuntucve
CVE-2022-2628
2022-10-03 00:00:00
prion
prion
Cross site scripting
2022-10-03 14:15:00
cvelist
cvelist
wpvulndb
wpvulndb
DSGVO All in one for WP < 4.2 - Admin+ Stored Cross-Site Scripting
2022-09-12 00:00:00
wpexploit
wpexploit
DSGVO All in one for WP < 4.2 - Admin+ Stored Cross-Site Scripting
2022-09-12 00:00:00
cve
cve
CVE-2022-2628
2022-10-03 14:15:15
nvd
nvd
CVE-2022-2628
2022-10-03 14:15:15