Lucene search
HistorySep 23, 2022 - 2:15 p.m.
CVE-2022-37339
cve-2022-37339
authenticated
stored xss
fullworks meet my team
plugin
wordpress
nvd
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
22.6%
Authenticated (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Fullworks Meet My Team plugin <= 2.0.5 at WordPress.
Affected configurations
Node
fullworksstop_user_enumerationRange≤2.0.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fullworks | stop_user_enumeration | * | cpe:2.3:a:fullworks:stop_user_enumeration:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Meet My Team (WordPress plugin)",
"vendor": "Fullworks",
"versions": [
{
"lessThanOrEqual": "2.0.5",
"status": "affected",
"version": "<= 2.0.5",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
cvelist
cvelist
nvd
nvd
CVE-2022-37339
2022-09-23 14:15:12
wpvulndb
wpvulndb
Meet My Team <= 2.0.5 - Contributor+ Stored Cross-Site Scripting
2022-09-02 00:00:00
prion
prion
Cross site scripting
2022-09-23 14:15:00
patchstack
patchstack
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
22.6%
Related for CVE-2022-37339