Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.1
CVSSv3

CVE-2022-0953

Published: 25/04/2022 Updated: 03/05/2022
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Download Anti-malware Security And Brute-force Firewall

Vulnerability Summary

The Anti-Malware Security and Brute-Force Firewall WordPress plugin prior to 4.20.96 does not sanitise and escape the QUERY_STRING before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

download anti-malware security and brute-force firewall project download anti-malware security and brute-force firewall

Exploits

Exploit DB: WordPress Anti-Malware Security And Brute-Force Firewall Cross Site Scripting
WordPress Anti-Malware Security and Brute-Force Firewall plugin versions prior to 42096 suffer from a cross site scripting vulnerability ...

References

CWE-79https://wpscan.com/vulnerability/29ab3c7b-58e0-4a72-b7b4-ab12a6d54f5ahttps://nvd.nist.govhttps://packetstormsecurity.com/files/166680/WordPress-Anti-Malware-Security-And-Brute-Force-Firewall-Cross-Site-Scripting.html
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook