3 matches found
CVE-2022-45365
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Aleksandar Urošević Stock Ticker allows Reflected XSS.This issue affects Stock Ticker: from n/a through 3.23.2...
CVE-2022-45365
The CVE-2022-45365 entry concerns the WordPress Stock Ticker plugin (versions up to 3.23.2). It is a Reflected XSS caused by improper input handling during Web page generation, via endpoints such as ajax_stockticker_symbol_search_test and related load/search paths. An unauthenticated user can tri...
WordPress Stock Ticker Plugin <= 3.23.2 is vulnerable to Cross Site Scripting (XSS)
Software Stock Ticker Type Plugin Vulnerable versions = 3.23.2 Fixed in 3.23.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-45365 Patch priority Medium CVSS severity Medium 7.1 Developer Aleksandar Urošević PSID b2f877d49771 Credits Aman Rawat...