Lucene search
China National Vulnerability DatabaseCNVD-2022-88223HistorySep 28, 2022 - 12:00 a.m.
WordPress MaxButtons Cross-Site Scripting Vulnerability
2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
wordpress
maxbuttons
cross-site scripting
vulnerability
php
attackers
0.001 Low
EPSS
Percentile
22.7%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plug-in. WordPress MaxButtons 9.2 and earlier versions are vulnerable to cross-site scripting. The vulnerability stems from the lack of effective filtering and escaping of user-supplied data, which can be exploited by attackers to launch cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress max button | le | 9.2 |
Related
cve
cve
CVE-2022-38703
2022-09-23 14:15:12
patchstack
patchstack
wpvulndb
wpvulndb
Button Plugin MaxButtons < 9.3 - Admin+ Stored Cross-Site Scripting
2022-08-01 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2022-38703
2022-09-23 14:15:12
prion
prion
Cross site scripting
2022-09-23 14:15:00
openvas
openvas
WordPress MaxButtons Plugin < 9.3 Multiple Vulnerabilities
2023-10-05 00:00:00