Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbRaad Haddad of Cloudyrion GmbHWPVDB-ID:1240797C-7F45-4C36-83F0-501C544CE76A
HistoryJul 04, 2022 - 12:00 a.m.

Unyson < 2.7.27 - Reflected Cross-Site Scripting

2022-07-0400:00:00
Raad Haddad of Cloudyrion GmbH
wpscan.com
9

0.002 Low

EPSS

Percentile

52.6%

JSON

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting

PoC

https://example.com/wp-admin/admin.php?page=fw-extensions&amp;sub-page;=extension&amp;extension;=feedback

CPENameOperatorVersion
unysonlt2.7.27

Related

patchstack 1
nuclei 1
cve 1
wpexploit 1
nvd 1
cvelist 1
prion 1
openvas 1
patchstack
patchstack
WordPress Unyson plugin <= 2.7.26 - Reflected Cross-Site Scripting (XSS) vulnerability
2022-07-04 00:00:00
nuclei
nuclei
Unyson < 2.7.27 - Cross Site Scripting
2023-04-21 08:56:01
cve
cve
CVE-2022-2219
2022-07-25 13:15:08
wpexploit
wpexploit
Unyson < 2.7.27 - Reflected Cross-Site Scripting
2022-07-04 00:00:00
nvd
nvd
CVE-2022-2219
2022-07-25 13:15:08
cvelist
cvelist
CVE-2022-2219 Unyson < 2.7.27 - Reflected Cross-Site Scripting
2022-07-25 12:47:27
prion
prion
Cross site scripting
2022-07-25 13:15:00
openvas
openvas
WordPress Unyson Plugin < 2.7.27 XSS Vulnerability
2023-08-18 00:00:00

0.002 Low

EPSS

Percentile

52.6%

JSON
Related for WPVDB-ID:1240797C-7F45-4C36-83F0-501C544CE76A
patchstack1nuclei1cve1wpexploit1nvd1cvelist1prion1openvas1