CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-2538

The WP Hide & Security Enhancer WordPress plugin before 1.8 does not escape a parameter before outputting it back in an attribute of a backend page, leading to a Reflected Cross-Site Scripting

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 36.1%

CVSS Severity

CVSS v3 Score 6.1

References

https://wpscan.com/vulnerability/afa1e159-30bc-42d2-b3f8-8c868b113d3e
https://wpscan.com/vulnerability/afa1e159-30bc-42d2-b3f8-8c868b113d3e

Products affected by CVE-2022-2538

Nsp-Code » Wp Hide & Security Enhancer » Version: Any

cpe:2.3:a:nsp-code:wp_hide_&_security_enhancer:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2538

Products

Pricing

Contact Us