Lucene search
K

4 matches found

NVD
NVD
added 2022/06/15 8:15 p.m.14 views

CVE-2022-28612

Improper Access Control vulnerability leading to multiple Authenticated contributor or higher user role Stored Cross-Site Scripting XSS vulnerabilities in Muneeb's Custom Popup Builder plugin = 1.3.1 at WordPress...

5.4CVSS0.0046EPSS
Exploits0References2
CVE
CVE
added 2022/06/15 7:34 p.m.84 views

CVE-2022-28612

Affected software: WordPress + Muneeb’s Custom Popup Builder plugin (versions ≤ 1.3.1). Vulnerability: Improper access control enabling multiple authenticated users (contributor or higher) to trigger stored Cross‑Site Scripting (XSS). Root cause is insufficient authorization/sanitization of input...

5.4CVSS5.4AI score0.0046EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/06/15 7:34 p.m.18 views

CVE-2022-28612 WordPress Custom Popup Builder plugin <= 1.3.1 - Improper Access Control vulnerability leading to multiple Authenticated Stored XSS

Improper Access Control vulnerability leading to multiple Authenticated contributor or higher user role Stored Cross-Site Scripting XSS vulnerabilities in Muneeb's Custom Popup Builder plugin = 1.3.1 at WordPress...

5.4CVSS5.6AI score0.0046EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/06/15 7:34 p.m.9 views

CVE-2022-28612 WordPress Custom Popup Builder plugin <= 1.3.1 - Improper Access Control vulnerability leading to multiple Authenticated Stored XSS

Improper Access Control vulnerability leading to multiple Authenticated contributor or higher user role Stored Cross-Site Scripting XSS vulnerabilities in Muneeb's Custom Popup Builder plugin = 1.3.1 at WordPress...

5.4CVSS5.4AI score0.0046EPSS
Exploits0References2
Rows per page
Query Builder