CVE-2022-47600

🗓️ 10 May 2023 10:41:30Reported by PatchstackType

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Mass Email To users plugin <= 1.1.4 versions

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2022-47600	10 May 202314:14	–	circl
CNNVD	Wordpress plugin Mass Email To users 跨站脚本漏洞	10 May 202300:00	–	cnnvd
Cvelist	CVE-2022-47600 WordPress Mass Email To users Plugin <= 1.1.4 is vulnerable to Cross Site Scripting (XSS)	10 May 202310:41	–	cvelist
EUVD	EUVD-2022-50360	3 Oct 202520:07	–	euvd
NVD	CVE-2022-47600	10 May 202311:15	–	nvd
OSV	CVE-2022-47600	10 May 202311:15	–	osv
Patchstack	WordPress Mass Email To users Plugin <= 1.1.4 is vulnerable to Cross Site Scripting (XSS)	28 Apr 202300:00	–	patchstack
Prion	Cross site scripting	10 May 202311:15	–	prion
Positive Technologies	PT-2023-15424 · I Thirteen Web Solution · Mass Email To Users Plugin	10 May 202300:00	–	ptsecurity
RedhatCVE	CVE-2022-47600	6 Feb 202500:11	–	redhatcve

NVD

Vulners

Node

i13websolution mass_email_to_usersRange≤1.1.4wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "mass-email-to-users",
    "product": "Mass Email To users",
    "vendor": "I Thirteen Web Solution",
    "versions": [
      {
        "changes": [
          {
            "at": "1.1.5",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "1.1.4",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/mass-email-to-users/wordpress-mass-email-to-users-plugin-1-1-4-cross-site-scripting-xss

28 Apr 2026 16:07Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.16.1 - 7.1

EPSS0.00314

SSVC

CWE-79