CVE-2022-4755

CVSS V2 None CVSS V3 None
Description
A vulnerability was found in FlatPress and classified as problematic. This issue affects the function main of the file fp-plugins/mediamanager/panels/panel.mediamanager.file.php of the component Media Manager Plugin. The manipulation of the argument mm-newgallery-name leads to cross site scripting. The attack may be initiated remotely. The name of the patch is d3f329496536dc99f9707f2f295d571d65a496f5. It is recommended to apply a patch to fix this issue. The identifier VDB-216869 was assigned to this vulnerability.
Overview
  • CVE ID
  • CVE-2022-4755
  • Assigner
  • cna@vuldb.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-27T10:15:11
  • Last Modified Date
  • 2023-01-06T06:00:38
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:flatpress:flatpress:-:*:*:*:*:*:*:* 1 OR
History
Created Old Value New Value Data Type Notes
2022-12-27 11:16:05 Added to TrackCVE
2022-12-27 11:16:06 Weakness Enumeration new
2022-12-27 14:16:09 2022-12-27T13:48:11 CVE Modified Date updated
2022-12-27 14:16:09 Received Awaiting Analysis Vulnerability Status updated
2022-12-27 14:16:13 CVSS V3 information new
2023-01-03 19:14:31 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-03 19:14:35 CVSS V3 information new
2023-01-06 06:16:42 2023-01-06T06:00:38 CVE Modified Date updated
2023-01-06 06:16:42 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-06 06:16:44 CPE Information updated
2023-01-06 06:16:45 CVSS V3 information new