Lucene search
HistoryMay 09, 2023 - 1:15 p.m.
CVE-2022-46864
unauthenticated
reflected
cross-site scripting
xss
vulnerability
woocommerce
custom checkout fields editor
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
18.4%
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Umair Saleem Woocommerce Custom Checkout Fields Editor With Drag & Drop plugin <= 0.1 versions.
Affected configurations
Node
woocommerce_custom_checkout_fields_editor_with_drag_\&_drop_projectwoocommerce_custom_checkout_fields_editor_with_drag_\&_dropRange≤0.1wordpress
Related
cvelist
cvelist
cve
cve
CVE-2022-46864
2023-05-09 13:15:16
wpvulndb
wpvulndb
prion
prion
Cross site scripting
2023-05-09 13:15:00
wordfence
wordfence
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
18.4%
Related for NVD:CVE-2022-46864