CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-36378

Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in PluginlySpeaking Floating Div plugin <= 3.0 at WordPress.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.6%

CVSS Severity

CVSS v3 Score 4.8

References

https://patchstack.com/database/vulnerability/floating-div/wordpress-floating-div-plugin-3-0-authenticated-stored-cross-site-scripting-xss-vulnerability
https://wordpress.org/plugins/floating-div/#developers
https://patchstack.com/database/vulnerability/floating-div/wordpress-floating-div-plugin-3-0-authenticated-stored-cross-site-scripting-xss-vulnerability
https://wordpress.org/plugins/floating-div/#developers

Products affected by CVE-2022-36378

Floating Div Project » Floating Div » Version: 1.0

cpe:2.3:a:floating_div_project:floating_div:1.0
Floating Div Project » Floating Div » Version: 1.2

cpe:2.3:a:floating_div_project:floating_div:1.2
Floating Div Project » Floating Div » Version: 1.3

cpe:2.3:a:floating_div_project:floating_div:1.3
Floating Div Project » Floating Div » Version: 2.0

cpe:2.3:a:floating_div_project:floating_div:2.0
Floating Div Project » Floating Div » Version: 3.0

cpe:2.3:a:floating_div_project:floating_div:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-36378

Products

Pricing

Contact Us