Lucene search
PRIOn knowledge basePRION:CVE-2022-1089HistoryMay 16, 2022 - 3:15 p.m.
Cross site scripting
2022-05-1615:15:00
PRIOn knowledge base
www.prio-n.com
4
0.001 Low
EPSS
Percentile
25.0%
The Bulk Edit and Create User Profiles WordPress plugin before 1.5.14 does not sanitise and escape the Users Login, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
| CPE | Name | Operator | Version |
|---|---|---|---|
| bulk_edit_and_create_user_profiles_-_wp_sheet_editor | lt | 1.5.14 |
Related
patchstack
patchstack
cvelist
cvelist
nvd
nvd
CVE-2022-1089
2022-05-16 15:15:08
cnvd
cnvd
WordPress Bulk Edit and Create User Profiless plugin跨站脚本漏洞
2022-05-18 00:00:00
cve
cve
CVE-2022-1089
2022-05-16 15:15:08