Lucene search
K

4 matches found

OSV
OSV
added 2022/05/16 3:15 p.m.0 views

CVE-2022-1062

The th23 Social WordPress plugin through 1.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS5.8AI score
Exploits0References1
NVD
NVD
added 2022/05/16 3:15 p.m.18 views

CVE-2022-1062

The th23 Social WordPress plugin through 1.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

4.8CVSS0.00565EPSS
Exploits2References1
CNNVD
CNNVD
added 2022/05/16 12:0 a.m.3 views

WordPress plugin th23 Social 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. th23 Socials plugin 1.2.0 and earlier versions of WordPress are vulnerable to a cross-site scripting...

4.8CVSS5.2AI score0.00565EPSS
Exploits2References2
Patchstack
Patchstack
added 2022/04/19 12:0 a.m.23 views

WordPress th23 Social plugin <= 1.2.0 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Ankur Bakre in WordPress th23 Social plugin versions = 1.2.0. Solution Deactivate and delete. This plugin has been closed as of March 24, 2022 and is not available for download. This closure is temporary, pending a full review...

4.8CVSS3.4AI score0.00565EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder