Lucene search
Utkarsh AgrawalWPVDB-ID:D106CD93-CB9B-4558-9A29-0D556FD7C9E1HistoryMay 18, 2022 - 12:00 a.m.
Themify - WooCommerce Product Filter < 1.3.8 - Reflected Cross-Site Scripting
2022-05-1800:00:00
Utkarsh Agrawal
wpscan.com
60
0.001 Low
EPSS
Percentile
40.3%
The plugin does not sanitise and escape the page parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting
PoC
| CPE | Name | Operator | Version |
|---|---|---|---|
| themify-wc-product-filter | lt | 1.3.8 |
Related
patchstack
patchstack
cnvd
cnvd
WordPress Themify plugin cross-site scripting vulnerability
2022-06-15 00:00:00
prion
prion
Cross site scripting
2022-06-13 13:15:00
cve
cve
CVE-2022-1532
2022-06-13 13:15:10
wpexploit
wpexploit
cvelist
cvelist
nvd
nvd
CVE-2022-1532
2022-06-13 13:15:10
kitploit
kitploit