Lucene search
PatchstackCVE-2022-45375HistoryNov 17, 2022 - 11:15 p.m.
CVE-2022-45375
2022-11-1723:15:24
CWE-79
Patchstack
web.nvd.nist.gov
35
7
cve-2022-45375
authentication
stored xss
ifeature slider plugin
wordpress
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
22.7%
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in iFeature Slider plugin <= 1.2 on WordPress.
Affected configurations
Node
cyberchimpsifeature_sliderRange≤1.2wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cyberchimps | ifeature_slider | * | cpe:2.3:a:cyberchimps:ifeature_slider:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "ifeature-slider",
"product": "iFeature Slider (WordPress plugin)",
"vendor": "CyberChimps inc.",
"versions": [
{
"lessThanOrEqual": "1.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Social References
More
Related
nvd
nvd
CVE-2022-45375
2022-11-17 23:15:24
wpvulndb
wpvulndb
iFeature Slider <= 1.2 - Contributor+ Stored XSS
2022-11-17 00:00:00
patchstack
patchstack
cvelist
cvelist
prion
prion
Cross site scripting
2022-11-17 23:15:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
22.7%
Related for CVE-2022-45375