Lucene search
Sho Sakata (Cryptography Laboratory at Tokyo Denki University)PATCHSTACK:50F14048B31CC0F97DE82CB94506BA61HistoryJun 22, 2022 - 12:00 a.m.
WordPress DX Share Selection plugin <= 1.4 - Stored Cross-Site Scripting (XSS) via Cross-Site Request Forgery (CSRF) vulnerability
2022-06-2200:00:00
Sho Sakata (Cryptography Laboratory at Tokyo Denki University)
patchstack.com
7
wordpress
share selection plugin
cross-site scripting
csrf
vulnerability
update
EPSS
0.001
Percentile
45.0%
Stored Cross-Site Scripting (XSS) via Cross-Site Request Forgery (CSRF) vulnerability discovered by Sho Sakata (Cryptography Laboratory at Tokyo Denki University) in WordPress DX Share Selection plugin (versions <= 1.4).
Solution
Update the WordPress DX Share Selection plugin to the latest available version (at least 1.5).
Related
prion
prion
Cross site request forgery (csrf)
2022-07-18 17:15:00
cvelist
cvelist
CVE-2022-2001
2022-07-18 16:17:07
nvd
nvd
CVE-2022-2001
2022-07-18 17:15:08
cve
cve
CVE-2022-2001
2022-07-18 17:15:08
wpvulndb
wpvulndb
DX Share Selection < 1.5 - Stored Cross-Site Scripting via CSRF
2022-06-22 00:00:00