Vulnerability Details CVE-2022-33943
Authenticated (contributor or higher user role) Cross-Site Scripting (XSS) vulnerability in Nico Amarilla's BxSlider WP plugin <= 2.0.0 at WordPress.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.5%
CVSS Severity
CVSS v3 Score 5.4
References
- https://patchstack.com/database/vulnerability/bxslider-wp/wordpress-bxslider-wp-plugin-2-0-0-authenticated-cross-site-scripting-xss-vulnerability
- https://wordpress.org/plugins/bxslider-wp/#developers
- https://patchstack.com/database/vulnerability/bxslider-wp/wordpress-bxslider-wp-plugin-2-0-0-authenticated-cross-site-scripting-xss-vulnerability
- https://wordpress.org/plugins/bxslider-wp/#developers
Products affected by CVE-2022-33943
-
cpe:2.3:a:bxslider_wp_project:bxslider_wp:-
-
cpe:2.3:a:bxslider_wp_project:bxslider_wp:2.0.0