4 matches found
CVE-2022-41980
creationtimestamp| type| source ---|---|--- 2022-11-08 22:35:20+00:00| seen| https://t.me/cibsecurity/52660...
CVE-2022-41980
Auth. admin+ Cross-Site Scripting XSS vulnerability in Mantenimiento web plugin = 0.13 on WordPress...
CVE-2022-41980
Auth. admin+ Cross-Site Scripting XSS vulnerability in Mantenimiento web plugin = 0.13 on WordPress...
CVE-2022-41980
The CVE-2022-41980 entry concerns the WordPress Mantenimiento web plugin, versions ≤ 0.13, where authenticated attackers with admin+ privileges can trigger Cross‑Site Scripting (XSS). Multiple sources describe the issue as an XSS vulnerability arising from unsanitized/uncleaned plugin settings, p...