Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:10 a.m.13 views

CVE-2022-2627

The Newspaper WordPress theme before 12 does not sanitise a parameter before outputting it back in an HTML attribute via an AJAX action, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00969EPSS
Exploits2References1
Circl
Circl
added 2022/10/31 7:38 p.m.7 views

CVE-2022-2627

creationtimestamp| type| source ---|---|--- 2022-10-31 19:38:04+00:00| seen| https://t.me/cibsecurity/52294 2025-05-08 19:24:05+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15587...

6.1CVSS6AI score0.00969EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/10/31 12:0 a.m.30 views

CVE-2022-2627 Newspaper < 12 - Reflected Cross-Site Scripting

The Newspaper WordPress theme before 12 does not sanitise a parameter before outputting it back in an HTML attribute via an AJAX action, leading to a Reflected Cross-Site Scripting...

6.3AI score0.00969EPSS
Exploits2References1
CVE
CVE
added 2022/10/31 12:0 a.m.109 views

CVE-2022-2627

CVE-2022-2627 affects the WordPress Newspaper theme prior to 12. The issue is a cross-site scripting flaw where a parameter is not sanitized before being output back in an HTML attribute via an AJAX action, enabling a reflected XSS. The Nuclei template notes that exploitation could allow an attac...

6.1CVSS6.1AI score0.00969EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/31 12:0 a.m.13 views

CVE-2022-2627 Newspaper < 12 - Reflected Cross-Site Scripting

The Newspaper WordPress theme before 12 does not sanitise a parameter before outputting it back in an HTML attribute via an AJAX action, leading to a Reflected Cross-Site Scripting...

6.8AI score0.00969EPSS
Exploits2References1
Rows per page
Query Builder