Zercurity data services
  • Expand groupSummary
  • Applications (0)
  • Packages (0)
  • System updates (0)
  • Operating systems (0)

CVE-2022-2116

Description
The Contact Form DB WordPress plugin before 1.8.0 does not sanitise and escape some parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting
  • Risk: 61
CVSSv3
    CVSSv2

      Raw Object

      {
  "uuid": "43417201-025d-2845-465a-470b67735352",
  "name": "CVE-2022-2116",
  "description": "The Contact Form DB WordPress plugin before 1.8.0 does not sanitise and escape some parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting",
  "cvss": null,
  "score": 0,
  "severity": "NONE",
  "cvss3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
  "score3": 6.1,
  "severity3": "MEDIUM",
  "applications": [],
  "packages": [],
  "updates": [],
  "os": [],
  "risk": 61,
  "created_at": "2022-08-15T11:20:00+00:00",
  "updated_at": "2022-08-16T18:36:00+00:00",
  "deleted_at": null
}