Lucene search
Rafshanzani SuhadaPATCHSTACK:26EDDE41ED0CBEC7FCEE208C10FB7E27HistoryJul 14, 2022 - 12:00 a.m.
WordPress WP Comments Fields plugin <= 4.0 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2022-07-1400:00:00
Rafshanzani Suhada
patchstack.com
10
0.001 Low
EPSS
Percentile
25.0%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Rafshanzani Suhada in WordPress WP Comments Fields plugin (versions <= 4.0).
Solution
Update the WordPress WordPress Comments Fields plugin to the latest available version (at least 4.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress comments fields | le | 4.0 |
Related
cve
cve
CVE-2022-2398
2022-08-08 14:15:09
wpvulndb
wpvulndb
WP Comments Fields < 4.1 - Admin+ Stored Cross-Site Scripting
2022-07-14 00:00:00
cvelist
cvelist
CVE-2022-2398 WP Comments Fields < 4.1 - Admin+ Stored Cross-Site Scripting
2022-08-08 13:48:58
prion
prion
Cross site scripting
2022-08-08 14:15:00
wpexploit
wpexploit
WP Comments Fields < 4.1 - Admin+ Stored Cross-Site Scripting
2022-07-14 00:00:00
nvd
nvd
CVE-2022-2398
2022-08-08 14:15:09