4 matches found
CVE-2022-45839
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA WHA Puzzle plugin = 1.0.9 versions...
CVE-2022-45839
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA WHA Puzzle plugin = 1.0.9 versions...
CVE-2022-45839 WordPress WHA Puzzle Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WHA WHA Puzzle plugin = 1.0.9 versions...
CVE-2022-45839
CVE-2022-45839 refers to a stored cross-site scripting (XSS) vulnerability in the WordPress plugin WHA Puzzle (versions ≤ 1.0.9). The issue arises in the plugin’s authentication flow, enabling an attacker with access to the authoring context to inject and store XSS payloads. Multiple sources corr...