Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:4 p.m.8 views

CVE-2022-0876

The Social comments by WpDevArt WordPress plugin before 2.5.0 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS6.2AI score0.00577EPSS
Exploits2References1
OSV
OSV
added 2022/04/25 4:16 p.m.6 views

CVE-2022-0876

The Social comments by WpDevArt WordPress plugin before 2.5.0 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS5.8AI score0.00577EPSS
Exploits2References1
NVD
NVD
added 2022/04/25 4:16 p.m.20 views

CVE-2022-0876

The Social comments by WpDevArt WordPress plugin before 2.5.0 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when unfilteredhtml is disallowed...

4.8CVSS0.00577EPSS
Exploits2References1
Cvelist
Cvelist
added 2022/04/25 3:51 p.m.27 views

CVE-2022-0876 Social comments by WpDevArt < 2.5.0 - Admin+ Stored Cross-Site Scripting

The Social comments by WpDevArt WordPress plugin before 2.5.0 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when unfilteredhtml is disallowed...

5.2AI score0.00577EPSS
Exploits2References1
CVE
CVE
added 2022/04/25 3:51 p.m.79 views

CVE-2022-0876

The CVE-2022-0876 issue affects the WordPress plugin “Social comments by WpDevArt” prior to version 2.5.0. The root cause is failure to sanitize and escape settings, enabling stored Cross-Site Scripting by high-privilege users (e.g., admins) even when unfiltered_html is disallowed. Impact describ...

4.8CVSS4.8AI score0.00577EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder