Shodan
Maps
Images
Monitor
Developer
More...
Dashboard
View Api Docs
Vulnerabilities
By Date
Known Exploited
Advanced Search
Vulnerable Software
Vendors
Products
Vulnerability Details CVE-2022-24587
A stored cross-site scripting (XSS) vulnerability in the component core/admin/medias.php of PluXml v5.8.7 allows attackers to execute arbitrary web scripts or HTML.
Exploit prediction scoring system (EPSS) score
EPSS Score
0.002
EPSS Ranking
41.9%
CVSS Severity
CVSS v3 Score
5.4
CVSS v2 Score
3.5
References
https://github.com/Nguyen-Trung-Kien/CVE
https://github.com/Nguyen-Trung-Kien/CVE/blob/main/CVE-2022-24587/CVE-2022-24587.pdf
https://github.com/Nguyen-Trung-Kien/CVE
https://github.com/Nguyen-Trung-Kien/CVE/blob/main/CVE-2022-24587/CVE-2022-24587.pdf
Products affected by CVE-2022-24587
Pluxml
»
Pluxml
»
Version:
5.8.7
cpe:2.3:a:pluxml:pluxml:5.8.7
Products
Monitor
Search Engine
Developer API
Maps
Bulk Data
Images
Snippets
Pricing
Membership
API Subscriptions
Enterprise
Contact Us
support@shodan.io
Shodan ® - All rights reserved