CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-2222

Cross-site scripting vulnerability in WP-Members prior to version 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.4%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://jvn.jp/en/jp/JVN51355647/index.html
https://plugins.trac.wordpress.org/changeset/1667369/#file12
https://wordpress.org/plugins/wp-members/#developers
https://jvn.jp/en/jp/JVN51355647/index.html
https://plugins.trac.wordpress.org/changeset/1667369/#file12
https://wordpress.org/plugins/wp-members/#developers

Products affected by CVE-2017-2222

Butlerblog » Wp-Members » Version: N/A

cpe:2.3:a:butlerblog:wp-members:-
Butlerblog » Wp-Members » Version: 3.1.7

cpe:2.3:a:butlerblog:wp-members:3.1.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2222

Products

Pricing

Contact Us