4 matches found
CVE-2022-37330
Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA Crossword plugin = 1.1.10 at WordPress...
CVE-2022-37330
CVE-2022-37330 affects the WordPress WHA Crossword plugin 1.1.10 and earlier. The issue is an authenticated Stored Cross-Site Scripting (XSS) vulnerability where parameters are not properly sanitised/escaped, enabling a Contributor+ to inject script that could affect other users. The root cause i...
CVE-2022-37330 WordPress WHA Crossword plugin <= 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA Crossword plugin = 1.1.10 at WordPress...
CVE-2022-37330 WordPress WHA Crossword plugin <= 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA Crossword plugin = 1.1.10 at WordPress...