Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:34 a.m.11 views

CVE-2022-4654

The Pricing Tables WordPress Plugin WordPress plugin before 3.2.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

5.4CVSS5.9AI score0.00471EPSS
Exploits2References1
Circl
Circl
added 2025/03/28 2:27 p.m.5 views

CVE-2022-4654

creationtimestamp| type| source ---|---|--- 2025-03-28 14:27:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9359...

5.4CVSS5.5AI score0.00471EPSS
Exploits2References1
CVE
CVE
added 2023/01/30 8:31 p.m.56 views

CVE-2022-4654

The CVE-2022-4654 entry concerns the Pricing Tables WordPress Plugin prior to version 3.2.3, where one shortcode attribute is not validated/escaped. This allows Stored XSS from users with a role as low as contributor. The vulnerability’s impact is reflected in published PoCs and advisories, and a...

5.4CVSS5.3AI score0.00471EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2023/01/30 8:31 p.m.29 views

CVE-2022-4654 Pricing Tables WordPress Plugin – Easy Pricing Tables < 3.2.3 - Contributor+ Stored XSS via Shortcode

The Pricing Tables WordPress Plugin WordPress plugin before 3.2.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

5.5AI score0.00471EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2023/01/30 8:31 p.m.8 views

CVE-2022-4654 Pricing Tables WordPress Plugin – Easy Pricing Tables < 3.2.3 - Contributor+ Stored XSS via Shortcode

The Pricing Tables WordPress Plugin WordPress plugin before 3.2.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

5.5AI score0.00471EPSS
Exploits2References1
Rows per page
Query Builder