Lucene search
Muhammad Daffa (Patchstack Alliance)PATCHSTACK:CCCB5B4E2F1A9FFE7F657E872C4B4EE3HistoryAug 02, 2022 - 12:00 a.m.
WordPress Button Plugin MaxButtons plugin <= 9.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
2022-08-0200:00:00
Muhammad Daffa (Patchstack Alliance)
patchstack.com
10
0.001 Low
EPSS
Percentile
22.7%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Muhammad Daffa (Patchstack Alliance) in WordPress Button Plugin MaxButtons plugin (versions <= 9.2).
Solution
Update the WordPress MaxButtons plugin to the latest available version (at least 9.3).
| CPE | Name | Operator | Version |
|---|---|---|---|
| maxbuttons | le | 9.2 |
Related
cve
cve
CVE-2022-38703
2022-09-23 14:15:12
wpvulndb
wpvulndb
Button Plugin MaxButtons < 9.3 - Admin+ Stored Cross-Site Scripting
2022-08-01 00:00:00
cvelist
cvelist
cnvd
cnvd
WordPress MaxButtons Cross-Site Scripting Vulnerability
2022-09-28 00:00:00
nvd
nvd
CVE-2022-38703
2022-09-23 14:15:12
prion
prion
Cross site scripting
2022-09-23 14:15:00
openvas
openvas
WordPress MaxButtons Plugin < 9.3 Multiple Vulnerabilities
2023-10-05 00:00:00