Lucene search
WPScanCVELIST:CVE-2022-0535HistoryMar 07, 2022 - 8:16 a.m.
CVE-2022-0535 E2Pdf < 1.16.45 - Admin+ Stored Cross-Site Scripting (XSS)
2022-03-0708:16:51
CWE-79
WPScan
www.cve.org
2
0.001 Low
EPSS
Percentile
35.9%
The E2Pdf WordPress plugin before 1.16.45 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
CNA Affected
[
{
"product": "E2Pdf – Export To Pdf Tool for WordPress",
"vendor": "Unknown",
"versions": [
{
"lessThan": "1.16.45",
"status": "affected",
"version": "1.16.45",
"versionType": "custom"
}
]
}
]Related
wpexploit
wpexploit
E2Pdf < 1.16.45 - Admin+ Stored Cross-Site Scripting (XSS)
2022-02-09 00:00:00
nuclei
nuclei
WordPress E2Pdf <1.16.45 - Cross-Site Scripting
2022-10-07 15:08:33
wpvulndb
wpvulndb
E2Pdf < 1.16.45 - Admin+ Stored Cross-Site Scripting (XSS)
2022-02-09 00:00:00
nvd
nvd
CVE-2022-0535
2022-03-07 09:15:09
cve
cve
CVE-2022-0535
2022-03-07 09:15:09
cnvd
cnvd
WordPress E2Pdf Plugin Cross-Site Scripting Vulnerability
2022-03-09 00:00:00
prion
prion
Cross site scripting
2022-03-07 09:15:00