Lucene search
HistoryAug 22, 2022 - 3:15 p.m.
CVE-2022-2383
cve-2022-2383
nvd
wordpress
plugin
security
xss
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
43.6%
The Feed Them Social WordPress plugin before 3.0.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting
Affected configurations
Node
slickremixfeed_them_socialRange<3.0.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| slickremix | feed_them_social | * | cpe:2.3:a:slickremix:feed_them_social:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Feed Them Social – for Twitter feed, Youtube and more",
"vendor": "Unknown",
"versions": [
{
"lessThan": "3.0.1",
"status": "affected",
"version": "3.0.1",
"versionType": "custom"
}
]
}
]Social References
More
Related
patchstack
patchstack
wpvulndb
wpvulndb
Feed Them Social < 3.0.1 - Reflected Cross-Site Scripting
2022-07-26 00:00:00
osv
osv
CVE-2022-2383
2022-08-22 15:15:14
wpexploit
wpexploit
Feed Them Social < 3.0.1 - Reflected Cross-Site Scripting
2022-07-26 00:00:00
prion
prion
Cross site scripting
2022-08-22 15:15:00
nvd
nvd
CVE-2022-2383
2022-08-22 15:15:14
nuclei
nuclei
WordPress Feed Them Social <3.0.1 - Cross-Site Scripting
2022-08-25 15:48:37
cvelist
cvelist
CVE-2022-2383 Feed Them Social < 3.0.1 - Reflected Cross-Site Scripting
2022-08-22 15:02:27
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
43.6%
Related for CVE-2022-2383