Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:51 p.m.11 views

CVE-2022-2239

The Request a Quote WordPress plugin before 2.3.9 does not sanitise and escape some of its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS6.2AI score0.00532EPSS
Exploits2References1
Circl
Circl
added 2022/07/25 4:33 p.m.7 views

CVE-2022-2239

creationtimestamp| type| source ---|---|--- 2022-07-25 16:33:14+00:00| seen| https://t.me/cibsecurity/46903...

4.8CVSS5.8AI score0.00532EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2022/07/25 1:15 p.m.2 views

CVE-2022-2239

The Request a Quote WordPress plugin before 2.3.9 does not sanitise and escape some of its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.9AI score0.00532EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/07/25 12:47 p.m.23 views

CVE-2022-2239 Request a Quote < 2.3.9 - Admin+ Stored Cross-Site Scripting

The Request a Quote WordPress plugin before 2.3.9 does not sanitise and escape some of its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

5.1AI score0.00532EPSS
Exploits2References1
CVE
CVE
added 2022/07/25 12:47 p.m.68 views

CVE-2022-2239

The CVE-2022-2239 issue affects the WordPress plugin Request a Quote (pre-2.3.9). Affected component: plugin settings sanitization/escaping; root cause is lack of sanitization and escaping of certain settings, enabling cross-site scripting for high-privilege users (e.g., admins) even when unfilte...

4.8CVSS4.8AI score0.00532EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder