CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-4267

The Bulk Delete Users by Email WordPress plugin through 1.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.8%

CVSS Severity

CVSS v3 Score 6.1

References

https://wpscan.com/vulnerability/e09754f2-e241-4bf8-8c95-a3fbc0ba7585
https://wpscan.com/vulnerability/e09754f2-e241-4bf8-8c95-a3fbc0ba7585

Products affected by CVE-2022-4267

Speakdigital » Bulk Delete Users By Email » Version: N/A

cpe:2.3:a:speakdigital:bulk_delete_users_by_email:-
Speakdigital » Bulk Delete Users By Email » Version: 1.2

cpe:2.3:a:speakdigital:bulk_delete_users_by_email:1.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-4267

Products

Pricing

Contact Us