Vulnerabilities > CVE-2022-29432 - Unspecified vulnerability in Tms-Outsource Wpdatatables

CVSS 4.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

tms-outsource

NVD

Published: 2022-05-20

Updated: 2024-11-21

Summary

Multiple Authenticated (administrator or higher user role) Persistent Cross-Site Scripting (XSS) vulnerabilities in TMS-Plugins wpDataTables plugin <= 2.1.27 on WordPress via &data-link-text, &data-link-url, &data, &data-shortcode, &data-star-num vulnerable parameters.

Vulnerable Configurations

Part	Description	Count
Application	Tms-Outsource TMS Outsource Wpdatatables 1.1 TMS Outsource Wpdatatables 1.2 TMS Outsource Wpdatatables 1.3 TMS Outsource Wpdatatables 1.3.1 TMS Outsource Wpdatatables 1.4 TMS Outsource Wpdatatables 1.4.1 TMS Outsource Wpdatatables 1.5 TMS Outsource Wpdatatables 1.5.1 TMS Outsource Wpdatatables 1.5.2 TMS Outsource Wpdatatables 1.5.3 TMS Outsource Wpdatatables 1.5.4 TMS Outsource Wpdatatables 1.5.5 TMS Outsource Wpdatatables 1.5.6 TMS Outsource Wpdatatables 1.6 TMS Outsource Wpdatatables 1.6.1 TMS Outsource Wpdatatables 1.6.2 TMS Outsource Wpdatatables 1.7 TMS Outsource Wpdatatables 1.7.1 TMS Outsource Wpdatatables 1.7.2 TMS Outsource Wpdatatables 2.0 TMS Outsource Wpdatatables 2.0.1 TMS Outsource Wpdatatables 2.0.2 TMS Outsource Wpdatatables 2.1	23

Summary

Vulnerable Configurations

References