CVE-2022-1547

CVE-2022-1547: Check & Log email < 1.0.6 - Reflected Cross-Site Scripting

Vendor Unknown

Product Check & Log Email

Weakness CWE-79 · XSS

Published May 23, 2022

Last update August 3, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The Check & Log Email WordPress plugin before 1.0.6 does not sanitise and escape a parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting

Key dates

02Disclosure timeline

May 23, 2022 CVE published

August 3, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-1547

Related vulnerabilities

04Related CVE

CVE-2025-64875 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79) CVE-2024-53968 Adobe Experience Manager | Cross-site Scripting (DOM-based XSS) (CWE-79) CVE-2025-61651 i18n XSS through Special:CheckUser CheckUser helper CVE-2025-42969 Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP and ABAP Platform CVE-2025-1613 FiberHome AN5506-01A ONU GPON URL Filtering Submenu URL_filterCfg cross site scripting