Vulnerabilities > Bank Mellat Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-28	CVE-2022-0643	Unspecified vulnerability in Bank Mellat Project Bank Mellat 1.0/1.3.5/1.3.7 The Bank Mellat WordPress plugin through 1.3.7 does not sanitize and escape the orderId parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting. network low complexity bank-mellat-project	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.

Vulnerabilities > Bank Mellat Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Bank Mellat Project"}]}

Vulnerabilities > Bank Mellat Project