Lucene search
WPScanCVELIST:CVE-2022-4897HistoryFeb 21, 2023 - 8:50 a.m.
CVE-2022-4897 BackupBuddy < 8.8.3 - Multiple Reflected Cross-Site Scripting
2023-02-2108:50:50
WPScan
www.cve.org
4
cve-2022-4897
backupbuddy
wordpress
plugin
cross-site scripting
EPSS
0.004
Percentile
75.0%
The BackupBuddy WordPress plugin before 8.8.3 does not sanitise and escape some parameters before outputting them back in various places, leading to Reflected Cross-Site Scripting
CNA Affected
[
{
"vendor": "Unknown",
"product": "BackupBuddy",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "8.8.3"
}
],
"defaultStatus": "unaffected"
}
]Related
nuclei
nuclei
WordPress BackupBuddy <8.8.3 - Cross Site Scripting
2023-03-05 13:42:10
cve
cve
CVE-2022-4897
2023-02-21 09:15:11
wpvulndb
wpvulndb
BackupBuddy < 8.8.3 - Multiple Reflected Cross-Site Scripting
2023-01-30 00:00:00
nvd
nvd
CVE-2022-4897
2023-02-21 09:15:11
prion
prion
Cross site scripting
2023-02-21 09:15:00
wpexploit
wpexploit
BackupBuddy < 8.8.3 - Multiple Reflected Cross-Site Scripting
2023-01-30 00:00:00
wordfence
wordfence