Lucene search
K

CVE-2022-3062

🗓️ 26 Sep 2022 12:35:39Reported by WPScanType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 5 Media mentions👁 87 Views🌐 WEB

The Simple File List WordPress plugin before 4.4.12 allows Reflected Cross-Site Scripting

Related
Detection
Affected
Refs
Paths
Social
ReporterTitlePublishedViews
Family
Circl
CVE-2022-3062
26 Sep 202216:22
circl
CNNVD
WordPress plugin Simple File List 跨站脚本漏洞
26 Sep 202200:00
cnnvd
CNVD
WordPress Simple File List Cross-Site Scripting Vulnerability
28 Sep 202200:00
cnvd
Cvelist
CVE-2022-3062 Simple File List < 4.4.12 - Reflected Cross-Site Scripting
26 Sep 202212:35
cvelist
Fedora
[SECURITY] Fedora 35 Update: fzf-0.29.0-2.fc35
17 Aug 202201:36
fedora
Nuclei
Simple File List < 4.4.12 - Cross Site Scripting
2 Jul 202609:36
nuclei
NVD
CVE-2022-3062
26 Sep 202213:15
nvd
OSV
CVE-2022-3062
26 Sep 202213:15
osv
Prion
Cross site scripting
26 Sep 202213:15
prion
RedhatCVE
CVE-2022-3062
22 May 202522:50
redhatcve
Rows per page
NVD
Vulners
Node
simplefilelistsimple-file-listRange<4.4.12wordpress
[
  {
    "product": "Simple File List",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "4.4.12",
        "status": "affected",
        "version": "4.4.12",
        "versionType": "custom"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
pagequery paramwp-admin/admin.php?page=ee-simple-file-list&tab="style=animation-name:rotation+onanimationstart=alert(/XSS/)//Reflected XSS via unescaped parameters in attributes in Simple File List plugin (CWE-79)CWE-79
tabquery paramwp-admin/admin.php?page=ee-simple-file-list&tab="style=animation-name:rotation+onanimationstart=alert(/XSS/)//Reflected XSS via unescaped parameters in attributes in Simple File List plugin (CWE-79)CWE-79
pagequery paramwp-admin/?page=ee-simple-file-list&tab=settings&subtab="style=animation-name:rotation+onanimationstart=alert(/XSS/)//Reflected XSS via unescaped parameters in attributes in Simple File List plugin (CWE-79)CWE-79
tabquery paramwp-admin/?page=ee-simple-file-list&tab=settings&subtab="style=animation-name:rotation+onanimationstart=alert(/XSS/)//Reflected XSS via unescaped parameters in attributes in Simple File List plugin (CWE-79)CWE-79
subtabquery paramwp-admin/?page=ee-simple-file-list&tab=settings&subtab="style=animation-name:rotation+onanimationstart=alert(/XSS/)//Reflected XSS via unescaped parameters in attributes in Simple File List plugin (CWE-79)CWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 04:58Current
6Medium risk
Vulners AI Score6
CVSS 3.16.1
EPSS0.44095
SSVC
87