4 matches found
CVE-2022-2565
The Simple Payment Donations & Subscriptions WordPress plugin before 4.2.1 does not sanitise and escape user input given in its forms, which could allow unauthenticated attackers to perform Cross-Site Scripting attacks against admins...
CVE-2022-2565
creationtimestamp| type| source ---|---|--- 2022-09-05 16:12:17+00:00| seen| https://t.me/cibsecurity/49291...
CVE-2022-2565
CVE-2022-2565 affects the WordPress plugin Simple Payment Donations & Subscriptions prior to 4.2.1. The vulnerability is an unauthenticated Cross-Site Scripting (XSS) caused by the plugin not sanitising and escaping user input in its forms, potentially allowing an attacker to craft inputs that tr...
CVE-2022-2565 Best Payments Plugin for WP < 4.2.1 - Unauthenticated Stored Cross-Site Scripting
The Simple Payment Donations & Subscriptions WordPress plugin before 4.2.1 does not sanitise and escape user input given in its forms, which could allow unauthenticated attackers to perform Cross-Site Scripting attacks against admins...