Lucene search
PRIOn knowledge basePRION:CVE-2022-0706HistoryApr 18, 2022 - 6:15 p.m.
Cross site scripting
2022-04-1818:15:00
PRIOn knowledge base
www.prio-n.com
5
0.001 Low
EPSS
Percentile
21.4%
The Easy Digital Downloads WordPress plugin before 2.11.6 does not sanitise and escape the Downloadable File Name in the Logs, which could allow high privilege users to perform Cross-Site Scripting attacks when the unfiltered_html capability is disallowed
| CPE | Name | Operator | Version |
|---|---|---|---|
| easy_digital_downloads | lt | 2.11.6 |
Related
wpvulndb
wpvulndb
Easy Digital Downloads < 2.11.6 - Admin+ Stored Cross-Site Scripting
2022-03-28 00:00:00
nvd
nvd
CVE-2022-0706
2022-04-18 18:15:08
wpexploit
wpexploit
Easy Digital Downloads < 2.11.6 - Admin+ Stored Cross-Site Scripting
2022-03-28 00:00:00
cvelist
cvelist
cve
cve
CVE-2022-0706
2022-04-18 18:15:08
patchstack
patchstack