Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-43175

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00532EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:13 p.m.19 views

CVE-2022-3835

The Kwayy HTML Sitemap WordPress plugin before 4.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.6AI score0.00532EPSS
Exploits2
NVD
NVD
added 2022/12/26 1:15 p.m.25 views

CVE-2022-3835

The Kwayy HTML Sitemap WordPress plugin before 4.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS0.00532EPSS
Exploits2References1
OSV
OSV
added 2022/12/26 1:15 p.m.5 views

CVE-2022-3835

The Kwayy HTML Sitemap WordPress plugin before 4.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.8AI score0.00532EPSS
Exploits2References1
Prion
Prion
added 2022/12/26 1:15 p.m.19 views

Cross site scripting

The Kwayy HTML Sitemap WordPress plugin before 4.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.3CVSS4.7AI score0.00532EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/12/26 12:28 p.m.32 views

CVE-2022-3835 Kwayy HTML Sitemap < 4.0 - Admin+ Stored XSS

The Kwayy HTML Sitemap WordPress plugin before 4.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.9AI score0.00532EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2022/12/26 12:28 p.m.13 views

CVE-2022-3835 Kwayy HTML Sitemap < 4.0 - Admin+ Stored XSS

The Kwayy HTML Sitemap WordPress plugin before 4.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.8AI score0.00532EPSS
Exploits2References1
CVE
CVE
added 2022/12/26 12:28 p.m.54 views

CVE-2022-3835

The CVE-2022-3835 issue affects the WordPress plugin Kwayy HTML Sitemap (versions prior to 4.0). The vulnerability arises because the plugin does not sanitize/escape certain settings, enabling a Stored Cross‑Site Scripting (XSS) defect that can be triggered by high‑privilege users such as admins,...

4.8CVSS4.7AI score0.00532EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/26 12:0 a.m.4 views

PT-2022-24381 · WordPress · Kwayy Html Sitemap

Name of the Vulnerable Software and Affected Versions: Kwayy HTML Sitemap WordPress plugin versions prior to 4.0 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, for example,...

4.8CVSS5.8AI score0.00532EPSS
Exploits2References5
CNNVD
CNNVD
added 2022/12/26 12:0 a.m.4 views

WordPress Plugin Kwayy HTML Sitemap 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

4.8CVSS4.9AI score0.00532EPSS
Exploits2References2
wpexploit
wpexploit
added 2022/12/05 12:0 a.m.127 views

Kwayy HTML Sitemap < 4.0 - Admin+ Stored XSS

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup. 1. Click the 'Settings' button of this plugin. 2...

4.8CVSS4.7AI score0.00532EPSS
Exploits2
Rows per page
Query Builder