CVE-2022-3824 - Exploiting Stored XSS in WP Admin UI Customize WordPress Plugin (Pre-1.5.13)
Date of Discovery: September 2022
Affected Plugin: WP Admin UI Customize (before 1.5.13)
Vulnerability Type: Stored Cross-Site Scripting (XSS)
CVSS Score: 6.4
CVE-2022-3831 - Exploiting Stored XSS in the reCAPTCHA WordPress Plugin (<1.6) – Simple Walkthrough with Code Examples
WordPress plugins make websites both customizable and vulnerable. In late 2022, a vulnerability labeled CVE-2022-3831 was found in the very popular reCAPTCHA plugin for WordPress,
CVE-2022-3847 - Exploiting the Showing URL in QR Code WordPress Plugin’s Unchecked Settings for Stored XSS
WordPress plugins make website management easier, but sometimes they come with risky vulnerabilities. One such issue is CVE-2022-3847, which impacts the Showing URL in QR
CVE-2022-3833 - Exploiting Stored XSS in Fancier Author Box WordPress Plugin (Pre-1.5) – Exploit Details & Code Example
The Fancier Author Box plugin by ThematoSoup is a popular WordPress add-on used to display attractive author info boxes at the end of blog posts.
CVE-2022-3839 - Uncovering Stored XSS in the Analytics for WP Plugin (WordPress) — Full Exploit Details
WordPress, the backbone of millions of websites, is only as secure as its plugins. Today, we spotlight a real world vulnerability: CVE-2022-3839, found in the
Episode
00:00:00
00:00:00