CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Realfavicongenerator: >> Favicon By Realfavicongenerator >> 1.3.22 Security Vulnerabilities

CVE-2022-0471

The Favicon by RealFaviconGenerator WordPress plugin before 1.3.23 does not properly sanitise and escape the json_result_url parameter before outputting it back in the Favicon admin dashboard, leading to a Reflected Cross-Site Scripting issue

CVSS Score

6.1

EPSS Score

0.003

Published

2022-04-11

Page 1

Vulnerabilities

Vulnerable Software

Realfavicongenerator: >> Favicon By Realfavicongenerator >> 1.3.22 Security Vulnerabilities

Products

Pricing

Contact Us