CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Sitemap Project: >> Sitemap >> 3.8 Security Vulnerabilities

CVE-2022-4545

The Sitemap WordPress plugin before 4.4 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.

CVSS Score

5.4

EPSS Score

0.001

Published

2023-01-23

Page 1

Vulnerabilities

Vulnerable Software

Sitemap Project: >> Sitemap >> 3.8 Security Vulnerabilities

Products

Pricing

Contact Us