ReportizFlow
Filtered by vendor Getaawp
Subscriptions
Filtered by product Wordpress Plugin Aawp
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-50970 | 2 Getaawp, Wordpress | 2 Wordpress Plugin Aawp, Wordpress | 2026-05-11 | 5.4 Medium |
| WordPress Plugin AAWP 3.16 contains a reflected cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by manipulating the tab parameter. Attackers can craft URLs with XSS payloads in the tab parameter of the aawp-settings admin page to execute arbitrary JavaScript in the context of authenticated users. | ||||
Page 1 of 1.