Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-34675

Malicious code in bioql PyPI...

4.8CVSS5.2AI score0.00493EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:28 p.m.6 views

CVE-2022-2412

The Better Tag Cloud WordPress plugin through 0.99.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.7AI score0.00493EPSS
Exploits2References1
OSV
OSV
added 2022/08/08 2:15 p.m.3 views

CVE-2022-2412

The Better Tag Cloud WordPress plugin through 0.99.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.8AI score0.00493EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/08/08 2:15 p.m.4 views

CVE-2022-2412

The Better Tag Cloud WordPress plugin through 0.99.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.9AI score0.00493EPSS
Exploits2References2
CVE
CVE
added 2022/08/08 1:50 p.m.58 views

CVE-2022-2412

CVE-2022-2412 affects the WordPress plugin Better Tag Cloud up to version 0.99.5. The root cause is failure to sanitize/escape certain settings, enabling a Stored Cross-Site Scripting (XSS) attack when the unfiltered_html capability is disallowed (e.g., in multisite). The impact is described as r...

4.8CVSS4.7AI score0.00493EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2022/08/08 12:0 a.m.2 views

WordPress plugin Better Tag Cloud 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

4.8CVSS5AI score0.00493EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2022/08/08 12:0 a.m.6 views

PT-2022-16476 · WordPress · Better Tag Cloud

Name of the Vulnerable Software and Affected Versions: Better Tag Cloud WordPress plugin versions prior to 0.99.6 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks when the unfiltered html capability is disallowed, for example in a...

4.8CVSS4.6AI score0.00493EPSS
Exploits2References3
Patchstack
Patchstack
added 2022/07/18 12:0 a.m.13 views

WordPress Better Tag Cloud plugin <= 0.99.5 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Vinay Varma Mudunuri, Krishna Harsha Kondaveeti in WordPress Better Tag Cloud plugin versions = 0.99.5. Solution Deactivate and delete. This plugin has been closed as of July 14, 2022 and is not available for download. This...

4.8CVSS1.1AI score0.00493EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder