Lucene search
PRIOn knowledge basePRION:CVE-2022-4718HistoryJan 23, 2023 - 3:15 p.m.
Cross site scripting
2023-01-2315:15:00
PRIOn knowledge base
www.prio-n.com
2
wordpress
landing page builder
stored cross-site scripting
0.001 Low
EPSS
Percentile
23.5%
The Landing Page Builder WordPress plugin before 1.4.9.9 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.
| CPE | Name | Operator | Version |
|---|---|---|---|
| landing_page_builder | lt | 1.4.9.9 |
Related
cvelist
cvelist
wpvulndb
wpvulndb
wpexploit
wpexploit
cve
cve
CVE-2022-4718
2023-01-23 15:15:17
nvd
nvd
CVE-2022-4718
2023-01-23 15:15:17