Vulnerability Details CVE-2022-36347
Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Alpine Press Alpine PhotoTile for Pinterest plugin <= 1.3.1 at WordPress.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.2%
CVSS Severity
CVSS v3 Score 4.8
References
- https://patchstack.com/database/vulnerability/alpine-photo-tile-for-pinterest/wordpress-alpine-phototile-for-pinterest-plugin-1-3-1-authenticated-stored-cross-site-scripting-xss-vulnerability
- https://wordpress.org/plugins/alpine-photo-tile-for-pinterest/
- https://patchstack.com/database/vulnerability/alpine-photo-tile-for-pinterest/wordpress-alpine-phototile-for-pinterest-plugin-1-3-1-authenticated-stored-cross-site-scripting-xss-vulnerability
- https://wordpress.org/plugins/alpine-photo-tile-for-pinterest/
Products affected by CVE-2022-36347
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:-
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.1.1
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.2.1
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.2.3
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.2.5
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.2.6.1
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.2.6.2
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.2.7
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.3.0
-
cpe:2.3:a:thealpinepress:alpine_phototile_for_pinterest:1.3.1