Lucene search

Bold Timeline Lite < 1.1.5 - Contributor+ Stored XSS via Shortcode

🗓️ 03 Jan 2023 00:00:00Reported by Lana CodesType

Bold Timeline Lite < 1.1.5 - Contributor XSS via Shortcode. Does not validate and escape some shortcode attributes, enabling Stored XSS attacks by contributors against high privilege users

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Vulnrichment	CVE-2022-4828 Bold Timeline Lite < 1.1.5 - Contributor+ Stored XSS via Shortcode	30 Jan 202320:31	–	vulnrichment
Patchstack	WordPress Bold Timeline Lite Plugin < 1.1.5 is vulnerable to Cross Site Scripting (XSS)	3 Jan 202300:00	–	patchstack
Prion	Cross site scripting	30 Jan 202321:15	–	prion
NVD	CVE-2022-4828	30 Jan 202321:15	–	nvd
Cvelist	CVE-2022-4828 Bold Timeline Lite < 1.1.5 - Contributor+ Stored XSS via Shortcode	30 Jan 202320:31	–	cvelist
CVE	CVE-2022-4828	30 Jan 202321:15	–	cve
wpexploit	Bold Timeline Lite < 1.1.5 - Contributor+ Stored XSS via Shortcode	3 Jan 202300:00	–	wpexploit

Vulners

Node

bold-themes bold_timeline_liteRange<1.1.5wordpress

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

03 Jan 2023 00:00Current

2.6Low risk

Vulners AI Score2.6

EPSS0.00144