Lucene search
China National Vulnerability DatabaseCNVD-2022-88255HistorySep 28, 2022 - 12:00 a.m.
WordPress WordLift Cross-Site Scripting Vulnerability
2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
wordpress
wordlift
cross-site scripting
vulnerability
attackers
php
plugin
settings
0.001 Low
EPSS
Percentile
25.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions prior to WordPress WordLift 3.37.2, which stems from failure to clean and escape its settings, and can be exploited by attackers to launch cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress wordlift | lt | 3.37.2 |
Related
wpexploit
wpexploit
Wordlift < 3.37.2 - Admin+ Stored Cross-Site Scripting
2022-08-31 00:00:00
prion
prion
Cross site scripting
2022-09-26 13:15:00
cvelist
cvelist
CVE-2022-3069 Wordlift < 3.37.2 - Admin+ Stored Cross-Site Scripting
2022-09-26 12:35:39
cve
cve
CVE-2022-3069
2022-09-26 13:15:10
nvd
nvd
CVE-2022-3069
2022-09-26 13:15:10
wpvulndb
wpvulndb
Wordlift < 3.37.2 - Admin+ Stored Cross-Site Scripting
2022-08-31 00:00:00
mageia
mageia
Updated unbound packages fix security vulnerability
2022-08-26 00:21:07
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0303)
2022-08-26 00:00:00