Lucene search
WpvulndbWPVDB-ID:9374527C-FBF8-4A8E-892E-6082943F15CBHistoryMar 03, 2023 - 12:00 a.m.
Yet Another Stars Rating < 3.1.3 - Subscriber+ Stored XSS
2023-03-0300:00:00
wpscan.com
5
plugin
sanitization
parameters
subscriber role
0.001 Low
EPSS
Percentile
27.3%
The plugin does not sanitise and escape some parameters, which could allow users with a role as low as Subscriber to perform Stored Cross-Site Scripting attacks
| CPE | Name | Operator | Version |
|---|---|---|---|
| yet-another-stars-rating | lt | 3.1.3 |
Related
nvd
nvd
CVE-2022-40699
2023-03-16 09:15:09
cve
cve
CVE-2022-40699
2023-03-16 09:15:09
cvelist
cvelist
prion
prion
Cross site scripting
2023-03-16 09:15:00