Lucene search
Lana CodesPATCHSTACK:0D23CF368C16AE383906A5030D7397FFHistoryAug 31, 2022 - 12:00 a.m.
WordPress Bitcoin Satoshi Tools plugin <= 1.7.0 - Unauthorized AJAX Call to Stored Cross-Site Scripting (XSS) vulnerability
2022-08-3100:00:00
Lana Codes
patchstack.com
7
wordpress
bitcoin
satoshi tools
plugin
ajax call
cross-site scripting
vulnerability
lana codes
deactivate
delete
closure
review
0.001 Low
EPSS
Percentile
21.2%
Unauthorized AJAX Call to Stored Cross-Site Scripting (XSS) vulnerability discovered by Lana Codes in WordPress Bitcoin Satoshi Tools plugin (versions <= 1.7.0)
Solution
Deactivate and delete. This plugin has been closed as of August 29, 2022 and is not available for download. This closure is temporary, pending a full review.
| CPE | Name | Operator | Version |
|---|---|---|---|
| bitcoin satoshi tools | le | 1.7.0 |
Related
prion
prion
Cross site scripting
2022-09-26 13:15:00
wpvulndb
wpvulndb
Simple Bitcoin Faucets <= 1.7.0 - Unauthorised AJAX Call to Stored XSS
2022-08-31 00:00:00
nvd
nvd
CVE-2022-3024
2022-09-26 13:15:10
cvelist
cvelist
cnvd
cnvd
WordPress Simple Bitcoin Faucets Cross-Site Request Forgery Vulnerability
2022-09-28 00:00:00
cve
cve
CVE-2022-3024
2022-09-26 13:15:10
wpexploit
wpexploit
Simple Bitcoin Faucets <= 1.7.0 - Unauthorised AJAX Call to Stored XSS
2022-08-31 00:00:00