Lucene search
@huntrdevCVE-2022-3506HistoryOct 14, 2022 - 2:15 p.m.
CVE-2022-3506
2022-10-1414:15:10
CWE-79
@huntrdev
web.nvd.nist.gov
67
4
cve
2022
3506
cross-site scripting
xss
github
repository
barrykooij
related-posts-for-wp
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
50.4%
Cross-site Scripting (XSS) - Stored in GitHub repository barrykooij/related-posts-for-wp prior to 2.1.3.
Affected configurations
Node
never5related_postsRange<2.1.3wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| never5 | related_posts | * | cpe:2.3:a:never5:related_posts:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "barrykooij",
"product": "barrykooij/related-posts-for-wp",
"versions": [
{
"version": "unspecified",
"lessThan": "2.1.3",
"status": "affected",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
huntr
huntr
Stored Cross Site Scripting (XSS) in parameter rp4wp[heading_text]
2022-10-05 14:49:13
nuclei
nuclei
WordPress Related Posts <2.1.3 - Stored Cross-Site Scripting
2022-11-27 07:44:09
osv
osv
CVE-2022-3506
2022-10-14 14:15:10
nvd
nvd
CVE-2022-3506
2022-10-14 14:15:10
githubexploit
githubexploit
Exploit for CVE-2022-3506
2022-09-10 20:27:55
prion
prion
Cross site scripting
2022-10-14 14:15:00
cvelist
cvelist
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
50.4%
Related for CVE-2022-3506