Lucene search
PatchstackCVE-2022-45365HistoryDec 14, 2023 - 3:15 p.m.
CVE-2022-45365
2023-12-1415:15:07
CWE-79
Patchstack
web.nvd.nist.gov
28
cve-2022-45365
cross-site scripting
input neutralization
aleksandar uroševi?
stock ticker
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
31.3%
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Aleksandar Urošević Stock Ticker allows Reflected XSS.This issue affects Stock Ticker: from n/a through 3.23.2.
Affected configurations
Node
urosevicstock_tickerRange≤3.23.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| urosevic | stock_ticker | * | cpe:2.3:a:urosevic:stock_ticker:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "stock-ticker",
"product": "Stock Ticker",
"vendor": "Aleksandar Urošević",
"versions": [
{
"changes": [
{
"at": "3.23.3",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.23.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Stock Ticker < 3.23.3 - Reflected XSS
2023-09-13 00:00:00
nuclei
nuclei
Stock Ticker <= 3.23.2 - Cross-Site-Scripting
2023-10-17 07:20:28
prion
prion
Cross site scripting
2023-12-14 15:15:00
cvelist
cvelist
nvd
nvd
CVE-2022-45365
2023-12-14 15:15:07
wordfence
wordfence
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
31.3%
Related for CVE-2022-45365