cbcvebase.
CVE-2022-34857
published 2022-08-22

CVE-2022-34857: Reflected Cross-Site Scripting (XSS) vulnerability in smartypants SP Project & Document Manager plugin <= 4.59 at WordPress

PriorityP422medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EPSS
0.49%
38.5th percentile
Reflected Cross-Site Scripting (XSS) vulnerability in smartypants SP Project & Document Manager plugin <= 4.59 at WordPress

Affected

2 ranges
VendorProductVersion rangeFixed in
smartypantssp_project_document_manager<= 4.59
smartypantspluginssp_project_document_manager< 4.624.62
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.