CVE-2022-42462: WordPress IP Blacklist Cloud Plugin <= 5.00 is vulnerable to Cross Site Scripting (XSS)
First published: Tue Jan 17 2023(Updated: )
Auth. Stored Cross-Site Scripting (XSS) vulnerability in Adeel Ahmed's IP Blacklist Cloud plugin <= 5.00 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ip Blacklist Cloud Project Ip Blacklist Cloud | <=5.00 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2022-42462.
What is the severity of CVE-2022-42462?
The severity of CVE-2022-42462 is medium with a score of 4.8.
Which software versions are affected by this vulnerability?
Adeel Ahmed's IP Blacklist Cloud plugin versions up to and including 5.00 are affected by this vulnerability.
What is the Common Weakness Enumeration (CWE) ID for this vulnerability?
The CWE ID for this vulnerability is CWE-79.
How do I fix CVE-2022-42462?
To fix CVE-2022-42462, you should update Adeel Ahmed's IP Blacklist Cloud plugin to a version beyond 5.00.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/title
- agent/author
- agent/references
- agent/severity
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- vendor/ip blacklist cloud project
- canonical/ip blacklist cloud project ip blacklist cloud
- version/ip blacklist cloud project ip blacklist cloud/5.00