CVE-2022-28290

CVE-2022-28290

Vendor N/A
Product WordPress Country Selector Plugin
Weakness CWE-79 · XSS
Published April 25, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

Reflective Cross-Site Scripting vulnerability in WordPress Country Selector Plugin Version 1.6.5. The XSS payload executes whenever the user tries to access the country selector page with the specified payload as a part of the HTTP request

Key dates

02Disclosure timeline

April 25, 2022 CVE published
August 3, 2024 Record updated