Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.8 views

CVE-2022-0874

The WP Social Buttons WordPress plugin through 2.1 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS6.2AI score0.00565EPSS
Exploits2References1
NVD
NVD
added 2022/05/09 5:15 p.m.16 views

CVE-2022-0874

The WP Social Buttons WordPress plugin through 2.1 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00565EPSS
Exploits2References1
CVE
CVE
added 2022/05/09 4:50 p.m.72 views

CVE-2022-0874

The CVE applies to the WordPress plugin WP Social Buttons up to version 2.1. The vulnerability stems from insufficient sanitisation/escaping of settings, enabling stored Cross-Site Scripting by high-privilege users (e.g., admin) even when unfiltered_html is disallowed. Publicly documented details...

4.8CVSS4.8AI score0.00565EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2022/05/09 12:0 a.m.3 views

WordPress plugin WP Social Buttons跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...

4.8CVSS5AI score0.00565EPSS
Exploits2References2
Rows per page
Query Builder