Lucene search
HistoryJan 19, 2023 - 5:15 p.m.
CVE-2022-40697
cve-2022-40697
auth
admin+
stored xss
cross-site scripting
3com
asesor de cookies
normativa española
nvd
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.2%
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in 3com – Asesor de Cookies para normativa española plugin <= 3.4.3 versions.
Affected configurations
Node
3com_marketing3com_–_asesor_de_cookies_para_normativa_españolaRange≤3.4.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| 3commarketing:3com-asesor-de-cookies | 3commarketing 3com-asesor-de-cookies | le | 3.4.3 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"product": "3com – Asesor de Cookies para normativa española",
"vendor": "3COM Marketing",
"versions": [
{
"lessThanOrEqual": "3.4.3",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
patchstack
patchstack
prion
prion
Cross site scripting
2023-01-19 17:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-40697
2023-01-19 17:15:12
wpvulndb
wpvulndb
3com Asesor de Cookies <= 3.4.3 - Admin+ Stored XSS
2022-10-12 00:00:00
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
21.2%
Related for CVE-2022-40697