Vulnerabilities > CVE-2022-1267 - Unspecified vulnerability in BMI BMR Calculator Project BMI BMR Calculator 1.3

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

bmi-bmr-calculator-project

NVD

Published: 2022-05-16

Updated: 2024-11-21

Summary

The BMI BMR Calculator WordPress plugin through 1.3 does not sanitise and escape arbitrary POST data before outputting it back in the response, leading to a Reflected Cross-Site Scripting

Vulnerable Configurations

Part	Description	Count
Application	Bmi_Bmr_Calculator_Project BMI BMR Calculator Project BMI BMR Calculator - BMI BMR Calculator Project BMI BMR Calculator 1.3	2

References

https://wpscan.com/vulnerability/ed2971c2-b99c-4320-ac46-bea5a0a493ed
https://wpscan.com/vulnerability/ed2971c2-b99c-4320-ac46-bea5a0a493ed