Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:19 p.m.6 views

CVE-2022-1915

The WP Zillow Review Slider WordPress plugin before 2.4 does not escape a settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...

4.8CVSS6.1AI score0.00565EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/06/20 11:15 a.m.5 views

CVE-2022-1915

The WP Zillow Review Slider WordPress plugin before 2.4 does not escape a settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...

4.8CVSS5.8AI score0.00565EPSS
Exploits1References2
CVE
CVE
added 2022/06/20 10:26 a.m.61 views

CVE-2022-1915

The CVE-2022-1915 entry concerns the WordPress plugin WP Zillow Review Slider, affected in versions before 2.4. The vulnerability is a Cross-Site Scripting flaw caused by improper escaping of a settings field, which could allow high-privilege users to inject JavaScript (even when unfiltered_html ...

4.8CVSS4.8AI score0.00565EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/06/20 10:26 a.m.19 views

CVE-2022-1915 WP Zillow Review Slider < 2.4 - Admin+ Stored Cross-Site Scripting

The WP Zillow Review Slider WordPress plugin before 2.4 does not escape a settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite...

5AI score0.00565EPSS
Exploits1References1
Rows per page
Query Builder