Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:51 p.m.11 views

CVE-2022-4197

The Sliderby10Web WordPress plugin before 1.2.53 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.7AI score0.00532EPSS
Exploits2References1
OSV
OSV
added 2022/12/26 1:15 p.m.6 views

CVE-2022-4197

The Sliderby10Web WordPress plugin before 1.2.53 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

4.8CVSS5.8AI score0.00532EPSS
Exploits2References1
CVE
CVE
added 2022/12/26 12:28 p.m.71 views

CVE-2022-4197

The CVE-2022-4197 issue affects the Sliderby10Web WordPress plugin (versions prior to 1.2.53). It does not sanitize and escape some settings, enabling stored XSS by high-privilege users (e.g., admins) even when unfiltered_html is disallowed (such as in multisite setups). The vulnerability is asso...

4.8CVSS4.7AI score0.00532EPSS
Exploits2References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/26 12:28 p.m.9 views

CVE-2022-4197 Sliderby10Web < 1.2.53 - Admin+ Stored XSS

The Sliderby10Web WordPress plugin before 1.2.53 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.6AI score0.00532EPSS
Exploits2References1
Rows per page
Query Builder