Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2025/05/22 10:38 p.m.5 views

CVE-2022-2775

The Fast Flow WordPress plugin before 1.2.13 does not sanitise and escape some of its Widget settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

5.5CVSS5.7AI score0.00438EPSS
Exploits2References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:12 p.m.7 views

CVE-2022-1269

The Fast Flow WordPress plugin before 1.2.12 does not sanitise and escape the page parameter before outputting back in an attribute in an admin dashboard, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00345EPSS
Exploits2References1
CNNVD
CNNVDadded 2025/02/25 12:0 a.m.1 views

WordPress plugin Fast Flow 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS8.2AI score0.00112EPSS
Exploits0References2
Patchstack
Patchstackadded 2025/02/22 3:59 p.m.2 views

WordPress Fast Flow plugin <= 1.2.16 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Fast Flow versions = 1.2.16...

7.1CVSS6.1AI score0.00112EPSS
Exploits0Affected Software1
Patchstack
Patchstackadded 2022/07/31 12:0 a.m.26 views

WordPress Fast Flow Plugin <= 1.2.12 - Authenticated Stored Cross-Site Scripting

Authenticated Stored Cross-Site Scripting vulnerability discovered by Hardik Rathod in Fast Flow plugin versions = 1.2.12 Solution Update the WordPress Fast Flow plugin to the latest available version at least 1.2.13...

5.5CVSS2.2AI score0.00438EPSS
Exploits2References1Affected Software1
OSV
OSVadded 2022/05/02 4:15 p.m.0 views

CVE-2022-1269

The Fast Flow WordPress plugin before 1.2.12 does not sanitise and escape the page parameter before outputting back in an attribute in an admin dashboard, leading to a Reflected Cross-Site Scripting...

6.1CVSS5.8AI score
Exploits0References1
CNNVD
CNNVDadded 2022/05/02 12:0 a.m.3 views

WordPress plugin Fast Flow 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions of WordPress Fast Flow plugin prior to 1.2.12, which...

6.1CVSS6.2AI score0.00345EPSS
Exploits2References3
Positive Technologies
Positive Technologiesadded 2022/05/02 12:0 a.m.3 views

PT-2022-13763 · WordPress · Fast Flow Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: Fast Flow WordPress plugin versions prior to 1.2.12 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because the page parameter is not properly sanitised and escaped before being outputted back in an...

6.1CVSS6AI score0.00345EPSS
Exploits2References4
Rows per page
Query Builder