CVE Published: 23/04/2023 |
CVE Updated: 03/08/2024 |
CVE Year: 2022 Source: Patchstack |
Vendor: Codebangers |
Product: All in One Time Clock Lite Status : PUBLISHED
CVE-2022-44594 Description
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Codebangers All in One Time Clock Lite plugin <= 1.3.320 versions.
Metrics
CVSS Version: 3.1 |
Base Score: 4.8 MEDIUM Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N