CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The amCharts: Charts and Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'amchartsjavascript' parameter in all versions up to, and including, 1.4.4 due to the ability to supply arbitrary JavaScript a lack of nonce validation on the preview functionality. This mak...

6.1CVSS6.3AI score0.00742EPSS

Exploits0References1

NVD•added 2024/09/12 9:15 a.m.•8 views

CVE-2024-8622

6.1CVSS0.00742EPSS

Exploits0References3

OSV•added 2024/09/12 9:15 a.m.•0 views

CVE-2024-8622

6.1CVSS6AI score

Exploits0References3

Cvelist•added 2024/09/12 8:30 a.m.•15 views

CVE-2024-8622 amCharts: Charts and Maps <= 1.4.4 - Reflected Cross-Site Scripting via Cross-Site Request Forgery

6.1CVSS0.00742EPSS

Exploits0References3

Vulnrichment•added 2024/09/12 8:30 a.m.•12 views

CVE-2024-8622 amCharts: Charts and Maps <= 1.4.4 - Reflected Cross-Site Scripting via Cross-Site Request Forgery

6.1CVSS6.3AI score0.00742EPSS

Exploits0References3

CVE•added 2024/09/12 8:30 a.m.•44 views

CVE-2024-8622

The CVE-2024-8622 entry concerns the amCharts: Charts and Maps plugin for WordPress. Affected versions are

6.1CVSS6.2AI score0.00742EPSS

Exploits0References3Affected Software1

Patchstack•added 2024/09/12 6:18 a.m.•2 views

WordPress amCharts: Charts and Maps plugin <= 1.4.4 - Reflected Cross-Site Scripting via Cross-Site Request Forgery vulnerability

Reflected Cross-Site Scripting via Cross-Site Request Forgery vulnerability discovered by Krzysztof Zając in WordPress Plugin amCharts: Charts and Maps versions = 1.4.4...

6.1CVSS6.4AI score0.00742EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/09/12 12:0 a.m.•1 views

WordPress plugin amCharts: Charts and Maps 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS5.8AI score0.00742EPSS

Exploits0References4

Patchstack•added 2024/09/12 12:0 a.m.•9 views

WordPress amCharts: Charts and Maps Plugin <= 1.4.4 is vulnerable to Cross Site Scripting (XSS)

Software amCharts: Charts and Maps Type Plugin Vulnerable versions = 1.4.4 Fixed in 1.4.5 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-8622 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 73021204c003 Credits Krzyszto...

6.1CVSS5.7AI score0.00742EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2024/09/12 12:0 a.m.•2 views

PT-2024-39137 · WordPress · Amcharts

Name of the Vulnerable Software and Affected Versions: amCharts: Charts and Maps plugin for WordPress versions up to, and including, 1.4.4 Description: The issue allows unauthenticated attackers to inject arbitrary web scripts in pages through Reflected Cross-Site Scripting via the amcharts...

6.1CVSS6.7AI score0.00742EPSS

Exploits0References10

OSSF Malicious Packages•added 2024/03/31 12:55 a.m.•2 views

Malicious code in amcharts-accessibility-plugin (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3d8c46b66a30d5f77349bdbe5c55b3412346a1b9ee26009a3ee535cdcf1e1677 The OpenSSF Package Analysis project identified 'amcharts-accessibility-plugin' @ 99.3.0 npm as malicious. It is considered malicious because: -...

7.1AI score

Exploits0

OSV•added 2022/08/23 4:15 p.m.•1 views

CVE-2022-36405

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in amCharts: Charts and Maps plugin = 1.4 at WordPress...

5.4CVSS5.8AI score0.00188EPSS

Exploits0References2

NVD•added 2022/08/23 4:15 p.m.•8 views

CVE-2022-36405

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in amCharts: Charts and Maps plugin = 1.4 at WordPress...

5.4CVSS0.00188EPSS

Exploits0References2

Prion•added 2022/08/23 4:15 p.m.•10 views

Cross site scripting

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in amCharts: Charts and Maps plugin = 1.4 at WordPress...

4.9CVSS5.2AI score0.00188EPSS

Exploits0References2

Cvelist•added 2022/08/23 3:48 p.m.•12 views

CVE-2022-36405 WordPress amCharts: Charts and Maps plugin <= 1.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated contributor+ Stored Cross-Site Scripting XSS vulnerability in amCharts: Charts and Maps plugin = 1.4 at WordPress...

5.4CVSS5.4AI score0.00188EPSS

Exploits0References2

CVE•added 2022/08/23 3:48 p.m.•77 views

CVE-2022-36405

CVE-2022-36405 affects the WordPress amCharts: Charts and Maps plugin (versions ≤ 1.4). The vulnerability is an authenticated stored XSS in contributor+-level contexts caused by insufficient sanitization/escaping of user-supplied input in the plugin. Impact is mediated to authenticated users; no ...

5.4CVSS5.2AI score0.00188EPSS

Exploits0References2Affected Software1

WPVulnDB•added 2022/08/09 12:0 a.m.•26 views

amCharts: Charts and Maps < 1.4.1 - Contributor+ Stored Cross-Site Scripting

The plugin does not sanitise and escape some of its parameters, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks...

5.4CVSS3AI score0.00188EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by