Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:39 p.m.8 views

CVE-2022-2799

The Affiliates Manager WordPress plugin before 2.9.14 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.9AI score0.00538EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2023/02/17 12:0 a.m.27 views

WordPress Affiliates Manager Plugin < 2.9.14 Multiple Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpaffiliatemanager:affiliatesmanager"; ifdescription...

8CVSS6AI score0.0095EPSS
Exploits4References4
Circl
Circl
added 2022/09/16 12:42 p.m.6 views

CVE-2022-2799

creationtimestamp| type| source ---|---|--- 2022-09-16 12:42:00+00:00| seen| https://t.me/cibsecurity/49872...

4.8CVSS4.9AI score0.00538EPSS
Exploits2References1
NVD
NVD
added 2022/09/16 9:15 a.m.40 views

CVE-2022-2799

The Affiliates Manager WordPress plugin before 2.9.14 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00538EPSS
Exploits2References1
CVE
CVE
added 2022/09/16 8:40 a.m.75 views

CVE-2022-2799

The CVE-2022-2799 entry concerns the WordPress Affiliates Manager plugin prior to version 2.9.14. The vulnerability arises from insufficient sanitization/escaping of certain settings, enabling stored Cross-Site Scripting by high-privilege users even when unfiltered_html is disallowed. The NVD rep...

4.8CVSS4.7AI score0.00538EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/09/16 8:40 a.m.43 views

CVE-2022-2799 Affiliates Manager < 2.9.14 - Admin+ Stored Cross-Site Scripting

The Affiliates Manager WordPress plugin before 2.9.14 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

5.6AI score0.00538EPSS
Exploits2References1
Rows per page
Query Builder