Lucene search
WPScanCVELIST:CVE-2022-2187HistoryJul 17, 2022 - 10:37 a.m.
CVE-2022-2187 Contact Form 7 Captcha < 0.1.2 - Reflected Cross-Site Scripting
2022-07-1710:37:14
CWE-79
WPScan
www.cve.org
6
cve-2022-2187
contact form 7 captcha
reflected cross-site scripting
wordpress plugin
EPSS
0.001
Percentile
43.5%
The Contact Form 7 Captcha WordPress plugin before 0.1.2 does not escape the $_SERVER[‘REQUEST_URI’] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers
CNA Affected
[
{
"product": "Contact Form 7 Captcha",
"vendor": "Unknown",
"versions": [
{
"lessThan": "0.1.2",
"status": "affected",
"version": "0.1.2",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Contact Form 7 Captcha < 0.1.2 - Reflected Cross-Site Scripting
2022-06-27 00:00:00
openvas
openvas
WordPress Contact Form 7 Captcha Plugin < 0.1.2 XSS Vulnerability
2022-07-18 00:00:00
prion
prion
Cross site scripting
2022-07-17 11:15:00
nuclei
nuclei
WordPress Contact Form 7 Captcha <0.1.2 - Cross-Site Scripting
2022-07-17 16:48:55
wpexploit
wpexploit
Contact Form 7 Captcha < 0.1.2 - Reflected Cross-Site Scripting
2022-06-27 00:00:00
cnvd
cnvd
WordPress plugin Contact Form 7 Captcha跨站脚本漏洞
2022-07-19 00:00:00
patchstack
patchstack
cve
cve
CVE-2022-2187
2022-07-17 11:15:09
nvd
nvd
CVE-2022-2187
2022-07-17 11:15:09