Lucene search
PatchstackCVE-2022-41638HistoryOct 21, 2022 - 4:15 p.m.
CVE-2022-41638
2022-10-2116:15:11
CWE-79
Patchstack
web.nvd.nist.gov
38
8
cve-2022-41638
cross-site scripting
xss
pop-up chop chop
wordpress
security vulnerability
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
19.4%
Auth. Stored Cross-Site Scripting (XSS) in Pop-Up Chop Chop plugin <= 2.1.7 on WordPress.
Affected configurations
Node
chop-choppop-up_chop_chopRange≤2.1.7wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| chop-chop | pop-up_chop_chop | * | cpe:2.3:a:chop-chop:pop-up_chop_chop:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"vendor": "Chop-Chop",
"product": "Pop-Up Chop Chop (WordPress plugin)",
"versions": [
{
"version": "<= 2.1.7",
"status": "affected",
"lessThanOrEqual": "2.1.7",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
wpvulndb
wpvulndb
Pop-Up Chop Chop <= 2.1.7 - Contributor+ Stored Cross-Site Scripting
2022-09-26 00:00:00
patchstack
patchstack
prion
prion
Cross site scripting
2022-10-21 16:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-41638
2022-10-21 16:15:11
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
19.4%
Related for CVE-2022-41638