Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:11 a.m.10 views

CVE-2022-1946

The Gallery WordPress plugin before 2.0.0 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action available to both unauthenticated and authenticated users, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS6.1AI score0.01626EPSS
Exploits2References1
Circl
Circl
added 2022/07/04 4:12 p.m.9 views

CVE-2022-1946

creationtimestamp| type| source ---|---|--- 2022-07-04 16:12:31+00:00| seen| https://t.me/cibsecurity/45560...

6.1CVSS6AI score0.01626EPSS
Exploits2References1
NVD
NVD
added 2022/07/04 1:15 p.m.22 views

CVE-2022-1946

The Gallery WordPress plugin before 2.0.0 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action available to both unauthenticated and authenticated users, leading to a Reflected Cross-Site Scripting issue...

6.1CVSS0.01626EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/07/04 1:5 p.m.21 views

CVE-2022-1946 Gallery < 2.0.0 - Reflected Cross-Site Scripting

The Gallery WordPress plugin before 2.0.0 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action available to both unauthenticated and authenticated users, leading to a Reflected Cross-Site Scripting issue...

6.2AI score0.01626EPSS
Exploits2References1
CVE
CVE
added 2022/07/04 1:5 p.m.101 views

CVE-2022-1946

The WordPress Gallery plugin before 2.0.0 contains a reflected Cross-Site Scripting vulnerability in which a parameter is not sanitized/escaped before being echoed in the AJAX response. The issue is exploitable via an AJAX action accessible to both unauthenticated and authenticated users, potenti...

6.1CVSS6AI score0.01626EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder