CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-0380

The Fotobook WordPress plugin is vulnerable to Reflected Cross-Site Scripting due to insufficient escaping and the use of $_SERVER['PHP_SELF'] found in the ~/options-fotobook.php file which allows attackers to inject arbitrary web scripts onto the page, in versions up to and including 3.2.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.6%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2022-0380

Fotobook Project » Fotobook » Version: N/A

cpe:2.3:a:fotobook_project:fotobook:-
Fotobook Project » Fotobook » Version: 1.0

cpe:2.3:a:fotobook_project:fotobook:1.0
Fotobook Project » Fotobook » Version: 1.1

cpe:2.3:a:fotobook_project:fotobook:1.1
Fotobook Project » Fotobook » Version: 1.1.1

cpe:2.3:a:fotobook_project:fotobook:1.1.1
Fotobook Project » Fotobook » Version: 1.2

cpe:2.3:a:fotobook_project:fotobook:1.2
Fotobook Project » Fotobook » Version: 1.2.1

cpe:2.3:a:fotobook_project:fotobook:1.2.1
Fotobook Project » Fotobook » Version: 1.3

cpe:2.3:a:fotobook_project:fotobook:1.3
Fotobook Project » Fotobook » Version: 1.3.1

cpe:2.3:a:fotobook_project:fotobook:1.3.1
Fotobook Project » Fotobook » Version: 2.0

cpe:2.3:a:fotobook_project:fotobook:2.0
Fotobook Project » Fotobook » Version: 2.0.1

cpe:2.3:a:fotobook_project:fotobook:2.0.1
Fotobook Project » Fotobook » Version: 2.1

cpe:2.3:a:fotobook_project:fotobook:2.1
Fotobook Project » Fotobook » Version: 3.0

cpe:2.3:a:fotobook_project:fotobook:3.0
Fotobook Project » Fotobook » Version: 3.0.1

cpe:2.3:a:fotobook_project:fotobook:3.0.1
Fotobook Project » Fotobook » Version: 3.0.2

cpe:2.3:a:fotobook_project:fotobook:3.0.2
Fotobook Project » Fotobook » Version: 3.0.3

cpe:2.3:a:fotobook_project:fotobook:3.0.3
Fotobook Project » Fotobook » Version: 3.0.5

cpe:2.3:a:fotobook_project:fotobook:3.0.5
Fotobook Project » Fotobook » Version: 3.0.6

cpe:2.3:a:fotobook_project:fotobook:3.0.6
Fotobook Project » Fotobook » Version: 3.0.7

cpe:2.3:a:fotobook_project:fotobook:3.0.7
Fotobook Project » Fotobook » Version: 3.1

cpe:2.3:a:fotobook_project:fotobook:3.1
Fotobook Project » Fotobook » Version: 3.1.1

cpe:2.3:a:fotobook_project:fotobook:3.1.1
Fotobook Project » Fotobook » Version: 3.1.3

cpe:2.3:a:fotobook_project:fotobook:3.1.3
Fotobook Project » Fotobook » Version: 3.1.4

cpe:2.3:a:fotobook_project:fotobook:3.1.4
Fotobook Project » Fotobook » Version: 3.1.5

cpe:2.3:a:fotobook_project:fotobook:3.1.5
Fotobook Project » Fotobook » Version: 3.1.6

cpe:2.3:a:fotobook_project:fotobook:3.1.6
Fotobook Project » Fotobook » Version: 3.1.7

cpe:2.3:a:fotobook_project:fotobook:3.1.7
Fotobook Project » Fotobook » Version: 3.1.8

cpe:2.3:a:fotobook_project:fotobook:3.1.8
Fotobook Project » Fotobook » Version: 3.2

cpe:2.3:a:fotobook_project:fotobook:3.2
Fotobook Project » Fotobook » Version: 3.2.1

cpe:2.3:a:fotobook_project:fotobook:3.2.1
Fotobook Project » Fotobook » Version: 3.2.2

cpe:2.3:a:fotobook_project:fotobook:3.2.2
Fotobook Project » Fotobook » Version: 3.2.3

cpe:2.3:a:fotobook_project:fotobook:3.2.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-0380

Products

Pricing

Contact Us