To plugin page

Fixed

WordPress WP Paginate plugin <= 2.1.8 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

4.8

CVSS 3.1 score Medium severity

Monitoring Coming soon

Find out about vulnerable plugins in your websites for free.

Scan your website

Software

WP-Paginate

Type

Plugin

Vulnerable versions

<= 2.1.8

Fixed in

2.1.9

PSID

cc69ea94263d

CVE ID

CVE-2022-2050

Classification

Cross Site Scripting (XSS)

OWASP Top 10

A7: Cross-Site Scripting (XSS)

Required privilege

Requires high role user authentication like admin.

Credits

iohex

Publicly disclosed

2022-06-16

Details

Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by iohex in WordPress WP Paginate plugin (versions <= 2.1.8).

Solution

Update the WordPress WP Paginate plugin to the latest available version (at least 2.1.9).

References

Vulnerability details

Other known vulnerabilities for WP-Paginate

Authenticated Stored CrossSite Scripting (XSS) vulnerability

<= 2.1.3

Submit vulnerabilities and become a verified Alliance member

Learn more

WordPress WP Paginate plugin <= 2.1.8 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Details

Solution

References

Other known vulnerabilities for WP-Paginate

Submit vulnerabilities and become a verified Alliance member

All solutions

WordPress security

Patchstack

Social

All solutions

WordPress Security

Patchstack

Social

© 2022 Patchstack

WordPress WP Paginate plugin <= 2.1.8 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Details

Solution

References

Other known vulnerabilities for WP-Paginate

Submit vulnerabilities and become a verified Alliance member

All solutions

WordPress security

Patchstack

Social

All solutions

WordPress Security

Patchstack

Social

© 2022 Patchstack

Let us know if we have missed a vulnerability reported elsewhere

Thank you for contributing!