5 matches found
CVE-2022-4654
The Pricing Tables WordPress Plugin WordPress plugin before 3.2.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...
CVE-2022-4654
creationtimestamp| type| source ---|---|--- 2025-03-28 14:27:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9359...
CVE-2022-4654
The CVE-2022-4654 entry concerns the Pricing Tables WordPress Plugin prior to version 3.2.3, where one shortcode attribute is not validated/escaped. This allows Stored XSS from users with a role as low as contributor. The vulnerability’s impact is reflected in published PoCs and advisories, and a...
CVE-2022-4654 Pricing Tables WordPress Plugin – Easy Pricing Tables < 3.2.3 - Contributor+ Stored XSS via Shortcode
The Pricing Tables WordPress Plugin WordPress plugin before 3.2.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...
CVE-2022-4654 Pricing Tables WordPress Plugin – Easy Pricing Tables < 3.2.3 - Contributor+ Stored XSS via Shortcode
The Pricing Tables WordPress Plugin WordPress plugin before 3.2.3 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...