Lucene search
LucyPATCHSTACK:BEADC1522E2E5F46963FB4ABEA0A3B0EHistoryOct 06, 2022 - 12:00 a.m.
WordPress WP Word Count plugin <= 3.2.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2022-10-0600:00:00
lucy
patchstack.com
13
wordpress
word count plugin
authenticated
cross-site scripting
xss
lucy
deactivate
delete
closure
review
EPSS
0.001
Percentile
24.8%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by lucy in the WordPress WP Word Count plugin (versions <= 3.2.3).
Solution
Deactivate and delete. This plugin has been closed as of October 6, 2022 and is not available for download. This closure is temporary, pending a full review.
Related
cvelist
cvelist
CVE-2022-3408 WP Word Count <= 3.2.3 - Admin+ Stored Cross-Site Scripting
2022-10-31 00:00:00
cve
cve
CVE-2022-3408
2022-10-31 16:15:11
prion
prion
Cross site scripting
2022-10-31 16:15:00
nvd
nvd
CVE-2022-3408
2022-10-31 16:15:11