Monitor free

Report

New Known

Exploited

Fixed

WordPress Data Tables Generator by Supsystic plugin <= 1.10.19 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

4.8

CVSS 3.1 score Medium severity

Report

Monitoring Monitoring Known to be exploited Coming soon

Find out about vulnerable plugins in your websites for free.

Scan your website

Software

Data Tables Generator by Supsystic

Type

Plugin

Vulnerable versions

<= 1.10.19

Fixed in

1.10.20

PSID

27607db0aab6

CVE ID

CVE-2022-2114

Classification

Cross Site Scripting (XSS)

OWASP Top 10

A7: Cross-Site Scripting (XSS)

Required privilege

Requires high role user authentication like admin.

Credits

iohex

Publicly disclosed

2022-06-22

Patchstack vPatch available since

09.12.2021

Details

Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by iohex in WordPress Data Tables Generator by Supsystic plugin (versions <= 1.10.19).

Solution

Update the WordPress Data Tables Generator by Supsystic plugin to the latest available version (at least 1.10.20).

References