Lucene search
PatchstackCVELIST:CVE-2022-40968HistoryDec 04, 2022 - 10:03 p.m.
CVE-2022-40968 WordPress 2kb Amazon Affiliates Store Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS)
2022-12-0422:03:38
CWE-79
Patchstack
www.cve.org
cve-2022-40968
cross site scripting
reflected
wordpress
amazon affiliates store
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
31.5%
Reflected Cross-Site Scripting (XSS) vulnerability in 2kb Amazon Affiliates Store plugin <=2.1.5 on WordPress.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"product": "2kb Amazon Affiliates Store",
"vendor": "2kblater",
"versions": [
{
"lessThanOrEqual": "2.1.5",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2022-40968
2022-12-04 23:15:09
patchstack
patchstack
wpvulndb
wpvulndb
2kb Amazon Affiliates Store <= 2.1.5 - Reflected XSS
2022-10-24 00:00:00
cve
cve
CVE-2022-40968
2022-12-04 23:15:09
prion
prion
Cross site scripting
2022-12-04 23:15:00
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
31.5%
Related for CVELIST:CVE-2022-40968