Lucene search

[email protected]NVD:CVE-2022-45065

HistoryMay 08, 2023 - 3:15 p.m.

CVE-2022-45065

2023-05-0815:15:09

CWE-79

[email protected]

web.nvd.nist.gov

cve-2022-45065

unauthenticated

reflected

cross-site scripting

squirrly seo plugin

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

18.2%

JSON

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Squirrly SEO Plugin by Squirrly SEO plugin <= 12.1.20 versions.

Affected configurations

Nvd

Node

squirrlyseo_plugin_by_squirrly_seoRange≤12.1.20wordpress

VendorProductVersionCPE
squirrlyseo_plugin_by_squirrly_seo*cpe:2.3:a:squirrly:seo_plugin_by_squirrly_seo:*:*:*:*:*:wordpress:*:*

Vendor	Product	Version	CPE
squirrly	seo_plugin_by_squirrly_seo	*	cpe:2.3:a:squirrly:seo_plugin_by_squirrly_seo::::::wordpress::*

References

patchstack.com/database/vulnerability/squirrly-seo/wordpress-squirrly-seo-peaks-plugin-12-1-20-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

18.2%

JSON

Related for NVD:CVE-2022-45065

prion1 cve1 cvelist1 openvas1 wpvulndb1 wordfence1