Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:55 a.m.11 views

CVE-2022-3829

The Font Awesome 4 Menus WordPress plugin through 4.7.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.7AI score0.00524EPSS
Exploits2
NVD
NVD
added 2024/01/16 4:15 p.m.24 views

CVE-2022-3829

The Font Awesome 4 Menus WordPress plugin through 4.7.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS4.7AI score0.00524EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/01/16 3:53 p.m.4 views

CVE-2022-3829 Font Awesome 4 Menus <= 4.7.0 - Admin+ Stored XSS

The Font Awesome 4 Menus WordPress plugin through 4.7.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.6AI score0.00524EPSS
Exploits2References1
CVE
CVE
added 2024/01/16 3:53 p.m.487 views

CVE-2022-3829

CVE-2022-3829 – Font Awesome 4 Menus WordPress plugin (versions ≤ 4.7.0) contains insufficient sanitization/escaping of settings, enabling Stored XSS by high-privilege users (e.g., admins), even when unfiltered_html is disallowed (such as in multisite setups). Affected component is the plugin’s s...

4.8CVSS4.7AI score0.00524EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder