Lucene search
PatchstackCVE-2022-38703HistorySep 23, 2022 - 2:15 p.m.
CVE-2022-38703
2022-09-2314:15:12
CWE-79
Patchstack
web.nvd.nist.gov
28
2
cve-2022-38703
authenticated
stored xss
maxbuttons plugin
wordpress
nvd
CVSS3
4.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
AI Score
4.9
Confidence
High
EPSS
0.001
Percentile
22.7%
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Max Foundry Button Plugin MaxButtons plugin <= 9.2 at WordPress
Affected configurations
Node
maxfoundrymaxbuttonsRange≤9.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| maxfoundry | maxbuttons | * | cpe:2.3:a:maxfoundry:maxbuttons:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"product": "WordPress Button Plugin MaxButtons (WordPress plugin)",
"vendor": "Max Foundry",
"versions": [
{
"lessThanOrEqual": "9.2",
"status": "affected",
"version": "<= 9.2",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
prion
prion
Cross site scripting
2022-09-23 14:15:00
nvd
nvd
CVE-2022-38703
2022-09-23 14:15:12
patchstack
patchstack
wpvulndb
wpvulndb
Button Plugin MaxButtons < 9.3 - Admin+ Stored Cross-Site Scripting
2022-08-01 00:00:00
cnvd
cnvd
WordPress MaxButtons Cross-Site Scripting Vulnerability
2022-09-28 00:00:00
cvelist
cvelist
openvas
openvas
WordPress MaxButtons Plugin < 9.3 Multiple Vulnerabilities
2023-10-05 00:00:00
CVSS3
4.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
AI Score
4.9
Confidence
High
EPSS
0.001
Percentile
22.7%
Related for CVE-2022-38703