CVE-2022-41132

Summary

Unauthenticated Plugin Settings Change Leading To Stored XSS Vulnerability in Ezoic plugin <= 2.8.8 on WordPress.

Affected Software

VendorProductVersion RangeStatus
Ezoic Inc.Ezoic (WordPress plugin)<= 2.8.8 <= 2.8.8affected

Weaknesses

  • CWE-264: CWE-264 Permissions, Privileges, and Access Controls
  • CWE-79: CWE-79 Cross-site Scripting (XSS)

ADP Enrichment

CVE Program Container

Additional References

References