CVE-2025-22622 MEDIUM

CVE-2025-22622: Age Verification - Reflected cross-site scripting (XSS)

Vendor Age Checker

Product Age Verification

Weakness CWE-79 · XSS

Published February 19, 2025

Last update February 19, 2025

View on NVD All CVEs

CVSS base score

4.3/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction Required

Confidentiality None

Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

Age Verification for your checkout page. Verify your customer's identity 1.20.0 was found to be vulnerable. The web application dynamically generates web content without validating the source of the potentially untrusted data in myapp/class-wc-integration-agechecker-integration.php.

Key dates

02Disclosure timeline

February 19, 2025 CVE published

February 19, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-22622

Related vulnerabilities

CVE-2025-22622: Age Verification - Reflected cross-site scripting (XSS)

01Description

02Disclosure timeline

03References

04Related CVE