Cross-Site Scripting (XSS) vulnerability in KubiQ's PNG to JPG plugin <= 4.0 at WordPress via Cross-Site Request Forgery (CSRF). Vulnerable parameter &jpg_quality.
References
Configurations
History
26 May 2022, 20:16
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 6.1 |
References | (CONFIRM) https://patchstack.com/database/vulnerability/png-to-jpg/wordpress-png-to-jpg-plugin-4-0-cross-site-request-forgery-csrf-leading-to-persistent-cross-site-scripting-xss-vulnerability - Third Party Advisory | |
References | (CONFIRM) https://wordpress.org/plugins/png-to-jpg/#developers - Product | |
First Time |
Png To Jpg Project png To Jpg
Png To Jpg Project |
|
CPE | cpe:2.3:a:png_to_jpg_project:png_to_jpg:*:*:*:*:*:wordpress:*:* |
20 May 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-20 21:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-29430
Mitre link : CVE-2022-29430
CVE.ORG link : CVE-2022-29430
JSON object : View
Products Affected
png_to_jpg_project
- png_to_jpg