➠ CVE-2022-3919 | Jetpack CRM Plugin up to 5.4.2 on WordPress Setting cross site scripting
A vulnerability classified as problematic has been found in Jetpack CRM Plugin up to 5.4.2. Affected is an unknown function of the component Setting Handler. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2022-3919. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component....
Zur Startseite
➤ Ähnliche Beiträge für 'CVE-2022-3919 | Jetpack CRM Plugin up to 5.4.2 on WordPress Setting cross site scripting'
XSS in admin contact form page
vom 5197.98 Punkte
Some elements in contact form are not properly escaped to prevent an XSS attack
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in shareddaddy module
vom 5063.45 Punkte
The shared daddy module is not properly escaped against an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in theme tools
vom 5038.99 Punkte
Some files in the theme tools module are not properly escaped to prevent an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in the contact form module
vom 4977.83 Punkte
The contact form module is not properly escaped against an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in various Jetpack classes
vom 4941.14 Punkte
Various variables in Jetpack classes are not properly escaped to prevent an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in custom post type module
vom 4904.45 Punkte
The custom post type module of the jetpack is not properly escaped to prevent an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in custom post type module
vom 4904.45 Punkte
The custom post type module of the jetpack is not properly escaped to prevent an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in the gravatar hovercards
vom 4879.99 Punkte
The gravatar module is not properly escaped to prevent an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
J
XSS in the markdown module
vom 4733.22 Punkte
The post and comment fields are not properly escaped to prevent an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
XSS in the Json-api module
vom 4672.07 Punkte
The Json-api module is not properly escaped against an XSS attack.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
Jetpack 10.1-
XSS in JSON endpoints
vom 4659.84 Punkte
Missing output sanitation can lead to XSS attacks
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
Jetpack 10.1-beta
XSS in the Jetpack libraries
vom 4659.84 Punkte
The Jetpack libraries are not properly escaped to prevent XSS.
This vulnerability affects the following application versions:
Jetpack 10.0
Jetpack 10.0-beta
Jetpack 10.1
Jetpack 10.1-