Lucene search
PatchstackCVELIST:CVE-2022-46858HistoryMay 09, 2023 - 11:40 a.m.
CVE-2022-46858 WordPress Product Specifications for Woocommerce Plugin <= 0.6.0 is vulnerable to Cross Site Scripting (XSS)
2023-05-0911:40:29
CWE-79
Patchstack
www.cve.org
2
cve-2022-46858
cross site scripting
unauthenticated
reflected cross-site scripting
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
18.2%
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Amin A.Rezapour Product Specifications for Woocommerce plugin <= 0.6.0 versions.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "product-specifications",
"product": "Product Specifications for Woocommerce",
"vendor": "Amin A.Rezapour",
"versions": [
{
"changes": [
{
"at": "0.7.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "0.6.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2022-46858
2023-05-09 13:15:16
prion
prion
Cross site scripting
2023-05-09 13:15:00
wpvulndb
wpvulndb
cve
cve
CVE-2022-46858
2023-05-09 13:15:16
wordfence
wordfence
CVSS3
7.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
EPSS
0.001
Percentile
18.2%
Related for CVELIST:CVE-2022-46858