2 matches found
CVE-2022-20241
CVE-2022-20241 affects Android 13 Messaging, where improper input validation allows attaching a private file to an SMS, enabling local information disclosure without extra privileges. Impact is Information Disclosure (C) with Local attack vector and no user interaction required per NVD metrics (C...
CVE-2022-2041
CVE-2022-2041 affects the WordPress Brizy Page Builder plugin prior to version 2.4.2. The issue arises from insufficient sanitization/escaping of certain element content, enabling stored XSS via content elements. Impact can be exploited by users with a role as low as Contributor. The documented r...