Vulnerabilities > CVE-2022-34853 - Unspecified vulnerability in Wpwax Team

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

wpwax

NVD

Published: 2022-07-22

Updated: 2024-11-21

Summary

Multiple Authenticated (contributor or higher user role) Persistent Cross-Site Scripting (XSS) vulnerabilities in wpWax Team plugin <= 1.2.6 at WordPress.

Vulnerable Configurations

Part	Description	Count
Application	Wpwax Wpwax Team - Wpwax Team 1.0.1 Wpwax Team 1.1.1 Wpwax Team 1.2.0 Wpwax Team 1.2.1 Wpwax Team 1.2.2 Wpwax Team 1.2.3 Wpwax Team 1.2.4 Wpwax Team 1.2.5 Wpwax Team 1.2.6	10

References

https://patchstack.com/database/vulnerability/adl-team/wordpress-team-plugin-1-2-6-multiple-authenticated-persistent-cross-site-scripting-xss-vulnerabilities
https://patchstack.com/database/vulnerability/adl-team/wordpress-team-plugin-1-2-6-multiple-authenticated-persistent-cross-site-scripting-xss-vulnerabilities
https://wordpress.org/plugins/adl-team/#description
https://wordpress.org/plugins/adl-team/#description