CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-35501

Stored Cross-site Scripting (XSS) exists in the Amasty Blog Pro 2.10.3 and 2.10.4 plugin for Magento 2 because of the duplicate post function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 28.7%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2022-35501

Amasty » Blog Pro » Version: 2.10.3

cpe:2.3:a:amasty:blog_pro:2.10.3
Amasty » Blog Pro » Version: 2.10.4

cpe:2.3:a:amasty:blog_pro:2.10.4

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved