Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-42562

Malicious code in bioql PyPI...

4.8CVSS5AI score0.00538EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:8 p.m.4 views

CVE-2022-3135

The SEO Smart Links WordPress plugin through 3.0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.6AI score0.00538EPSS
Exploits2References1
OSV
OSV
added 2022/09/26 1:15 p.m.2 views

CVE-2022-3135

The SEO Smart Links WordPress plugin through 3.0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.8AI score0.00538EPSS
Exploits2References1
CVE
CVE
added 2022/09/26 12:35 p.m.56 views

CVE-2022-3135

CVE-2022-3135 affects the WordPress SEO Smart Links plugin (versions up to 3.0.1). The underlying issue is that certain settings are not properly sanitised/escaped, enabling Stored Cross-Site Scripting by high-privilege admins (e.g., in multisite) when unfiltered_html is disallowed. Impact and ex...

4.8CVSS4.7AI score0.00538EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/26 12:35 p.m.5 views

CVE-2022-3135 SEO Smart Links <= 3.0.1 - Admin+ Stored Cross-Site Scripting

The SEO Smart Links WordPress plugin through 3.0.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.7AI score0.00538EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/09/26 12:0 a.m.3 views

WordPress plugin SEO Smart Links 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

4.8CVSS6.1AI score0.00538EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2022/09/05 12:0 a.m.17 views

SEO Smart Links <= 3.0.1 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup PoC Put the following payload in the "Whitelisted...

4.8CVSS1.7AI score0.00538EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2022/09/05 12:0 a.m.464 views

SEO Smart Links <= 3.0.1 - Admin+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup Put the following payload in the "Whitelisted...

4.8CVSS4.7AI score0.00538EPSS
Exploits2
Rows per page
Query Builder