CVE-2022-1546

🗓️ 11 Jul 2022 12:55:51Reported by WPScanType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 33 Views🌐 WEB

The WooCommerce - Product Importer WordPress plugin through 1.5.2 does not sanitise and escape the imported data before outputting it back in the page, leading to a Reflected Cross-Site Scriptin

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2022-1546	11 Jul 202213:15	–	attackerkb
Circl	CVE-2022-1546	11 Jul 202216:19	–	circl
CNNVD	WordPress plugin WooCommerce - Product Importer 跨站脚本漏洞	11 Jul 202200:00	–	cnnvd
CNVD	WordPress WooCommerce-Product Importer plugin跨站脚本漏洞	13 Jul 202200:00	–	cnvd
Cvelist	CVE-2022-1546 WooCommerce - Product Importer <= 1.5.2 - Reflected Cross-Site Scripting	11 Jul 202212:55	–	cvelist
EUVD	EUVD-2022-24841	3 Oct 202520:07	–	euvd
NVD	CVE-2022-1546	11 Jul 202213:15	–	nvd
Prion	Cross site scripting	11 Jul 202213:15	–	prion
RedhatCVE	CVE-2022-1546	22 May 202523:31	–	redhatcve
wpexploit	WooCommerce - Product Importer <= 1.5.2 - Reflected Cross-Site Scripting	16 Jun 202200:00	–	wpexploit

NVD

Vulners

Node

visser woocommerce_-_product_importerRange≤1.5.2wordpress

[
  {
    "product": "WooCommerce – Product Importer",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThanOrEqual": "1.5.2",
        "status": "affected",
        "version": "1.5.2",
        "versionType": "custom"
      }
    ]
  }
]