CVE-2022-1221
published 2022-05-23CVE-2022-1221: The Gwyn's Imagemap Selector WordPress plugin through 0.3.3 does not sanitise and escape some parameters before outputting them back in attributes, leading to…
PriorityP279medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
2.00%
78.3th percentile
The Gwyn's Imagemap Selector WordPress plugin through 0.3.3 does not sanitise and escape some parameters before outputting them back in attributes, leading to a Reflected Cross-Site Scripting.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gwyn_s_imagemap_selector_project | gwyn_s_imagemap_selector | <= 0.3.3 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Reflected XSS in Gwyn's Imagemap Selector WordPress plugin (≤0.3.3): unsanitised parameters are reflected back in HTML attributes — look for XSS payloads in query parameters on pages using this plugin ↗
- →Nuclei-style detection: HTTP response Content-Type header must be text/html and status code 200, with XSS payload (e.g. alert(document.domain)) reflected in the response body
- ·The CVE affects only plugin versions through 0.3.3; no patch version is confirmed in the sources
CVSS provenance
nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vulncheck6.1MEDIUM
vendor_cisco6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fmq3-2qp8-v6g9: The Gwyn's Imagemap Selector WordPress plugin through 0
ghsa_unreviewed·2022-05-24
CVE-2022-1221 [MEDIUM] CWE-79 GHSA-fmq3-2qp8-v6g9: The Gwyn's Imagemap Selector WordPress plugin through 0
The Gwyn's Imagemap Selector WordPress plugin through 0.3.3 does not sanitise and escape some parameters before outputting them back in attributes, leading to a Reflected Cross-Site Scripting.
VulnCheck
gwyn\'s_imagemap_selector_project gwyn\'s_imagemap_selector Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
vulncheck·2022·CVSS 6.1
CVE-2022-1221 [MEDIUM] gwyn\'s_imagemap_selector_project gwyn\'s_imagemap_selector Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
gwyn\'s_imagemap_selector_project gwyn\'s_imagemap_selector Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The Gwyn's Imagemap Selector WordPress plugin through 0.3.3 does not sanitise and escape some parameters before outputting them back in attributes, leading to a Reflected Cross-Site Scripting.
Affected: gwyn\'s_imagemap_selector_project gwyn\'s_imagemap_selector
Required Action: Apply remediations or mitigations per vendor instructions or discontinue use of the product if remediation or mitigations are unavailable.
Exploitation References: https://app.crowdsec.net/cti/cve-explorer/CVE-2022-1221
Cisco
Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
vendor_cisco·2022-04-13·CVSS 6.8
CVE-2022-20661 [MEDIUM] CWE-1221 Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently prevent the device from booting, resulting in a permanent denial of service (DoS) condition.
For more information about these vulnerabilities, see the Details section of this advisory.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cdb-cmicr-dos-KJjFtNb
Cisco
Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
vendor_cisco·CVSS 3.1
CVE-2022-20731 Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
CVE-2022-20731: Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently prevent the device from booting, resulting in a permanent denial of service (DoS) condition. For more information about these vulnerabilities, see the
CVSS: 3.1
CWE: CWE-1221, CWE-489, CWE-1221, CWE-489
Bug IDs: CSCvz02634, CSCvz30892, CSCvz34674, CSCvz02634, CSCvz30892
Cisco
Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
vendor_cisco·CVSS 3.1
CVE-2022-20661 Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
CVE-2022-20661: Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities
Multiple vulnerabilities that affect Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches could allow an attacker to execute persistent code at boot time or to permanently prevent the device from booting, resulting in a permanent denial of service (DoS) condition. For more information about these vulnerabilities, see the
CVSS: 3.1
CWE: CWE-1221, CWE-489, CWE-1221, CWE-489
Bug IDs: CSCvz02634, CSCvz30892, CSCvz34674, CSCvz02634, CSCvz30892
No detection rules found.
Nuclei
WordPress Gwyn's Imagemap Selector <=0.3.3 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2022-1221 [MEDIUM] WordPress Gwyn's Imagemap Selector <=0.3.3 - Cross-Site Scripting
WordPress Gwyn's Imagemap Selector alert(document.domain) popup-"
- type: word
part: header
words:
- text/html
- type: status
status:
- 200
# digest: 4b0a00483046022100a5b6f0ea00e4b5cb46e310b0e49eb7fe4758aef1efaf9ee6f97c9fe329a4a568022100e003ca2362314dac44ec65eeee6fdadd910abb0b3e223428bc1a90dd7b6c7cd7:922c64590222798bb761d5b6d8e72950
2022-05-23
Published
Exploited in the wild