CVE-2022-2887 – The WP Server Health Stats WordPress plugin before 1.7.0 does not escape some of its setti …

16 September 2022

Vuln ID: CVE-2022-2887

Published: 2022-09-16 09:15:11Z

Description: The WP Server Health Stats WordPress plugin before 1.7.0 does not escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

Source: NVD.NIST.GOV

Date:

16 September 2022

Categorie(s):

NVD

Tag(s):

NVD

Protobom: Open-source software supply chain tool19 April 2024
The key pillars of domain security19 April 2024
Fraudsters abused Apple Stores’ third-party pickup policy to phish for profits19 April 2024
51% of enterprises experienced a breach despite large security stacks19 April 2024
Alert! Windows LPE Zero-day Exploit Advertised on Hacker Forums19 April 2024