Lucene search
PRIOn knowledge basePRION:CVE-2022-2341HistoryJul 25, 2022 - 1:15 p.m.
Cross site scripting
2022-07-2513:15:00
PRIOn knowledge base
www.prio-n.com
3
wordpress
plugin
stored cross-site scripting
0.001 Low
EPSS
Percentile
36.0%
The Simple Page Transition WordPress plugin through 1.4.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed (for example in multisite setup)
| CPE | Name | Operator | Version |
|---|---|---|---|
| simple_page_transition | le | 1.4.1 |
Related
cve
cve
CVE-2022-2341
2022-07-25 13:15:08
wpexploit
wpexploit
Simple Page Transition <= 1.4.1 - Admin+ Stored Cross-Site Scripting
2022-06-27 00:00:00
wpvulndb
wpvulndb
Simple Page Transition <= 1.4.1 - Admin+ Stored Cross-Site Scripting
2022-06-27 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2022-2341
2022-07-25 13:15:08