Lucene search
WPScanCVELIST:CVE-2022-1456HistoryMay 30, 2022 - 8:35 a.m.
CVE-2022-1456 Poll Maker < 4.0.2 - Admin+ Stored Cross-Site Scripting
2022-05-3008:35:47
CWE-79
WPScan
www.cve.org
0.001 Low
EPSS
Percentile
24.9%
The Poll Maker WordPress plugin before 4.0.2 does not sanitise and escape some settings, which could allow high privilege users such as admin to perform Store Cross-Site Scripting attack even when unfiltered_html is disallowed
CNA Affected
[
{
"product": "Poll Maker",
"vendor": "Unknown",
"versions": [
{
"lessThan": "4.0.2",
"status": "affected",
"version": "4.0.2",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2022-1456
2022-05-30 09:15:09
wpexploit
wpexploit
Poll Maker < 4.0.2 - Admin+ Stored Cross-Site Scripting
2022-05-04 00:00:00
cve
cve
CVE-2022-1456
2022-05-30 09:15:09
wpvulndb
wpvulndb
Poll Maker < 4.0.2 - Admin+ Stored Cross-Site Scripting
2022-05-04 00:00:00
prion
prion
Cross site scripting
2022-05-30 09:15:00