exploitDog

CVE-2022-41638

Опубликовано: 21 окт. 2022

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Auth. Stored Cross-Site Scripting (XSS) in Pop-Up Chop Chop plugin <= 2.1.7 on WordPress.

Ссылки

https://patchstack.com/database/vulnerability/pop-up/wordpress-pop-up-chop-chop-plugin-2-1-7-authenticated-stored-cross-site-scripting-xss-vulnerability?_s_id=cve
Third Party Advisory
https://wordpress.org/plugins/pop-up/
Product
Third Party Advisory
https://patchstack.com/database/vulnerability/pop-up/wordpress-pop-up-chop-chop-plugin-2-1-7-authenticated-stored-cross-site-scripting-xss-vulnerability?_s_id=cve
Third Party Advisory
https://wordpress.org/plugins/pop-up/
Product
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:chop-chop:pop-up_chop_chop:*:*:*:*:*:wordpress:*:*

Версия до 2.1.7 (включая)

EPSS

Процентиль: 42%

0.00198

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-x2jr-9c9v-6r8c

CVSS3: 5.4

github

больше 3 лет назад

Auth. Stored Cross-Site Scripting (XSS) in Pop-Up Chop Chop plugin <= 2.1.7 on WordPress.

EPSS

Процентиль: 42%

0.00198

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

CWE-79