CVE-2022-37404

Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Christian Salazar's add2fav plugin <= 1.0 at WordPress.

Link	Resource
https://patchstack.com/database/vulnerability/add2fav/wordpress-add2fav-plugin-1-0-authenticated-stored-cross-site-scripting-xss-vulnerability/_s_id=cve	Third Party Advisory
https://wordpress.org/plugins/add2fav/	Product Release Notes

Configuration 1

cpe:2.3:a:add2fav_project:add2fav:*:*:*:*:*:wordpress:*:*

---

Published : 2022-09-09 03:15

Updated : 2022-09-10 03:40

---

NVD link : CVE-2022-37404

Mitre link : CVE-2022-37404

No products.

CWE-79