Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-39965

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00433EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-39079

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00568EPSS
Exploits1References2
NVD
NVD
added 2022/09/23 2:15 p.m.12 views

CVE-2022-37330

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA Crossword plugin = 1.1.10 at WordPress...

5.4CVSS0.00433EPSS
Exploits0References2
OSV
OSV
added 2022/09/23 2:15 p.m.2 views

CVE-2022-37330

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA Crossword plugin = 1.1.10 at WordPress...

5.4CVSS5.8AI score0.00433EPSS
Exploits0References2
CVE
CVE
added 2022/09/23 1:33 p.m.65 views

CVE-2022-37330

CVE-2022-37330 affects the WordPress WHA Crossword plugin 1.1.10 and earlier. The issue is an authenticated Stored Cross-Site Scripting (XSS) vulnerability where parameters are not properly sanitised/escaped, enabling a Contributor+ to inject script that could affect other users. The root cause i...

5.4CVSS5.2AI score0.00433EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/09/23 1:33 p.m.24 views

CVE-2022-37330 WordPress WHA Crossword plugin <= 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA Crossword plugin = 1.1.10 at WordPress...

5.4CVSS5.4AI score0.00433EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/09/23 1:33 p.m.5 views

CVE-2022-37330 WordPress WHA Crossword plugin <= 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA Crossword plugin = 1.1.10 at WordPress...

5.4CVSS5.2AI score0.00433EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/09/23 12:0 a.m.3 views

PT-2022-23930 · Unknown · Wha Crossword Plugin

Name of the Vulnerable Software and Affected Versions: WHA Crossword plugin version 1.1.10 and earlier Description: The issue is related to an Authenticated Stored Cross-Site Scripting XSS vulnerability. This means that an attacker with contributor or higher privileges can inject malicious script...

5.4CVSS5.1AI score0.00433EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/09/23 12:0 a.m.2 views

WordPress plugin WHA Crossword 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

5.4CVSS5.4AI score0.00433EPSS
Exploits0References3
OSV
OSV
added 2022/09/21 8:15 p.m.5 views

CVE-2022-36365

Multiple Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerabilities in WHA Crossword plugin = 1.1.10 at WordPress...

5.4CVSS5.8AI score0.00568EPSS
Exploits1References2
NVD
NVD
added 2022/09/21 8:15 p.m.25 views

CVE-2022-36365

Multiple Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerabilities in WHA Crossword plugin = 1.1.10 at WordPress...

5.4CVSS0.00568EPSS
Exploits1References2
Prion
Prion
added 2022/09/21 8:15 p.m.12 views

Cross site scripting

Multiple Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerabilities in WHA Crossword plugin = 1.1.10 at WordPress...

4.9CVSS5.4AI score0.00568EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/09/21 7:6 p.m.68 views

CVE-2022-36365

CVE-2022-36365 affects the WordPress plugin WHA Crossword up to version 1.1.10 . The issue is described as multiple authenticated stored XSS vulnerabilities (contributor+ level) arising from insufficient input sanitization/escaping, enabling an attacker with at least contributor privileges to inj...

5.4CVSS5.4AI score0.00568EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/09/21 7:6 p.m.25 views

CVE-2022-36365 WordPress WHA Crossword plugin <= 1.1.10 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

Multiple Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerabilities in WHA Crossword plugin = 1.1.10 at WordPress...

5.4CVSS5.6AI score0.00568EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/09/21 12:0 a.m.6 views

PT-2022-23330 · Unknown · Wha Crossword Plugin

Name of the Vulnerable Software and Affected Versions: WHA Crossword plugin versions 1.1.10 and earlier Description: The issue concerns multiple authenticated Stored Cross-Site Scripting XSS vulnerabilities. These vulnerabilities can be exploited by contributors or users with higher privileges. T...

5.4CVSS5.5AI score0.00568EPSS
Exploits1References5
CNNVD
CNNVD
added 2022/09/21 12:0 a.m.3 views

WordPress plugin WHA Crossword 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.4CVSS5.5AI score0.00568EPSS
Exploits1References3
WPVulnDB
WPVulnDB
added 2022/09/01 12:0 a.m.28 views

WHA Crossword <= 1.1.10 - Contributor+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some parameters, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

5.4CVSS3AI score0.00433EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2022/09/01 12:0 a.m.20 views

WordPress WHA Crossword plugin <= 1.1.10 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Ngo Van Thien Patchstack Alliance in WordPress WHA Crossword plugin versions = 1.1.10. Solution Deactivate and delete. No reply from the vendor...

5.4CVSS2.7AI score0.00433EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2022/09/01 12:0 a.m.20 views

WordPress WHA Crossword plugin <= 1.1.10 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities were discovered by Vlad Vector Patchstack in the WordPress WHA Crossword plugin versions = 1.1.10. Solution Deactivate and delete. No reply from the vendor...

5.4CVSS2.4AI score0.00568EPSS
Exploits1Affected Software1
Rows per page
Query Builder