CVE-2022-2669

CVE-2022-2669: WP Taxonomy Import <= 1.0.4 - Reflected Cross-Site Scripting

Vendor Unknown
Product WP Taxonomy Import
Weakness CWE-79 · XSS
Published September 16, 2022
Last update June 5, 2025

CVSS base score

What the vulnerability does

01Description

The WP Taxonomy Import WordPress plugin through 1.0.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting

Key dates

02Disclosure timeline

September 16, 2022 CVE published
June 5, 2025 Record updated