This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Webartesanal First view 2022-11-08
Product Mantenimiento Web Last view 2022-11-18
Version * Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software wordpress  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:webartesanal:mantenimiento_web

Activity : Overall

Related : CVE

  Date Alert Description
6.1 2022-11-18 CVE-2022-38075

Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in Mantenimiento web plugin <= 0.13 on WordPress.

4.8 2022-11-08 CVE-2022-41980

Auth. (admin+) Cross-Site Scripting (XSS) vulnerability in Mantenimiento web plugin <= 0.13 on WordPress.

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-352 Cross-Site Request Forgery (CSRF)
50% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')