Vulnerability Details CVE-2022-29433
Authenticated (contributor or higher role) Cross-Site Scripting (XSS) vulnerability in Donations plugin <= 1.8 on WordPress.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.0%
CVSS Severity
CVSS v3 Score 4.1
CVSS v2 Score 3.5
References
- https://patchstack.com/database/vulnerability/nd-donations/wordpress-donations-plugin-1-8-authenticated-stored-cross-site-scripting-xss-vulnerability
- https://wordpress.org/plugins/nd-donations/
- https://patchstack.com/database/vulnerability/nd-donations/wordpress-donations-plugin-1-8-authenticated-stored-cross-site-scripting-xss-vulnerability
- https://wordpress.org/plugins/nd-donations/
Products affected by CVE-2022-29433
-
cpe:2.3:a:donations_project:donations:-
-
cpe:2.3:a:donations_project:donations:1.0
-
cpe:2.3:a:donations_project:donations:1.1
-
cpe:2.3:a:donations_project:donations:1.2
-
cpe:2.3:a:donations_project:donations:1.3
-
cpe:2.3:a:donations_project:donations:1.3.1
-
cpe:2.3:a:donations_project:donations:1.4