Lucene search
HistoryNov 18, 2022 - 11:15 p.m.
CVE-2022-45082
cve-2022-45082
auth
admin
stored xss
accordions plugin
wordpress
nvd
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
19.5%
Multiple Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerabilities in Accordions plugin <= 2.0.3 on WordPress via &addons-style-name and &accordions_or_faqs_license_key.
Affected configurations
Node
biplob_adhikariaccordions_–_multiple_accordions_or_faqs_builder_\(wordpress_plugin\)Range≤2.0.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| oxilab:accordions | oxilab accordions | lt | 2.1.0 |
CNA Affected
[
{
"vendor": "Biplob Adhikari",
"product": "Accordions – Multiple Accordions or FAQs Builder (WordPress plugin)",
"versions": [
{
"version": "<= 2.0.3",
"status": "affected",
"lessThanOrEqual": "2.0.3",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
cvelist
cvelist
patchstack
patchstack
nvd
nvd
CVE-2022-45082
2022-11-18 23:15:29
prion
prion
Cross site scripting
2022-11-18 23:15:00
wpvulndb
wpvulndb
Accordions < 2.1.0 - Admin+ Stored XSS
2022-09-29 00:00:00
4.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
19.5%
Related for CVE-2022-45082