CVE-2022-50970 | Getaawp AAWP Plugin 3.16 on WordPress Setting tab cross site scripting (Exploit 50643 / EDB-50643)

Inserito da Angelo Barbosa | Mag 10, 2026 | CVE

A vulnerability described as problematic has been identified in Getaawp AAWP Plugin 3.16 on WordPress. This issue affects some unknown processing of the component Setting Handler. Executing a manipulation of the argument tab can lead to cross site scripting.

This vulnerability is tracked as CVE-2022-50970. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2022-50970 | Getaawp AAWP Plugin 3.16 on WordPress Setting tab cross site scripting (Exploit 50643 / EDB-50643)

Post correlati

CVE-2025-5756 | code-projects Real Estate Property Management System 1.0 /Admin/EditCity.php sql injection

CVE-2026-3601 | wpeverest User Registration & Membership Plugin up to 5.1.4 on WordPress Shortcode embed_form_action authorization

CVE-2024-5551 | WP Staging Pro Plugin up to 5.6.0 on WordPress cross-site request forgery

CVE-2024-22029 | Apache Tomcat up to 9.0.84 Local Privilege Escalation