Lucene search
HistorySep 09, 2022 - 3:15 p.m.
CVE-2022-37403
cve-2022-37403
authenticated
stored xss
nikhil vaghela
add user role
wordpress
nvd
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
22.5%
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Nikhil Vaghela’s Add User Role plugin <= 0.0.1 at WordPress.
Affected configurations
Node
nikhil_vaghelaadd_user_role_\(wordpress_plugin\)Range≤0.0.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| add_user_role_project:add_user_role | add user role project add user role | le | 0.0.1 |
CNA Affected
[
{
"product": "Add User Role (WordPress plugin)",
"vendor": "Nikhil Vaghela",
"versions": [
{
"lessThanOrEqual": "0.0.1",
"status": "affected",
"version": "<= 0.0.1",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
prion
prion
Cross site scripting
2022-09-09 15:15:00
nvd
nvd
CVE-2022-37403
2022-09-09 15:15:13
wpvulndb
wpvulndb
Add User Role <= 0.0.1 - Admin+ Stored Cross-Site Scripting
2022-08-30 00:00:00
cvelist
cvelist
patchstack
patchstack
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
22.5%
Related for CVE-2022-37403