Lucene search
China National Vulnerability DatabaseCNVD-2022-19787HistoryMar 09, 2022 - 12:00 a.m.
WordPress YOP Poll Plugin Cross-Site Scripting Vulnerability
2022-03-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
21
wordpress
yop poll plugin
cross-site scripting
php
mysql
vulnerability
javascript
client-side
EPSS
0.001
Percentile
24.8%
WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress YOP Poll Plugin version 6.3.5 before the cross-site scripting vulnerability, the vulnerability stems from the plugin in the output of certain settings before they are not cleaned and escaped, an attacker can use the vulnerability to execute JavaScript code on the client side.
Related
nvd
nvd
CVE-2022-0205
2022-03-07 09:15:08
prion
prion
Cross site scripting
2022-03-07 09:15:00
cvelist
cvelist
CVE-2022-0205 YOP Poll < 6.3.5 - Author+ Stored Cross-Site Scripting
2022-03-07 08:16:23
wpexploit
wpexploit
YOP Poll < 6.3.5 - Author+ Stored Cross-Site Scripting
2022-02-14 00:00:00
wpvulndb
wpvulndb
YOP Poll < 6.3.5 - Author+ Stored Cross-Site Scripting
2022-02-14 00:00:00
cve
cve
CVE-2022-0205
2022-03-07 09:15:08