CVE-2022-43497

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-43497
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-43497.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-43497
Aliases
Downstream
Published
2022-12-05T04:15:10.457Z
Modified
2026-03-15T14:48:26.441864Z
Severity
  • 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Cross-site scripting vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to inject an arbitrary script. The developer also provides new patched releases for all versions since 3.7.

References

Affected packages

Git / github.com/wordpress/wordpress

Affected ranges

Type
GIT
Repo
https://github.com/wordpress/wordpress
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
1015e926e9dd093fd57abbf0cb38c2ead1b18606
Introduced
36470a480cac07d34a355e9f8a9409c1349b6e07
Fixed
35d45c1d2f75a7b53914695221b7d69f6670ba4e
Introduced
54a3b49fa91b7beeb3da2f448154f9e75f005a9a
Fixed
b85f668baaa8512504fb22927e9fbc2957e94922
Introduced
842221094a5011886291b21fd7c705835d69e0bc
Fixed
96f8cd0b915e1d1dbb3fa486daf4acd7d49930ec
Introduced
e5e791f331d371ad6262c1893d84f5f2b6c26464
Fixed
b7434667f46c304c61fd67e543c221ba5728f597
Introduced
87bf150016e042bc3e21f2f1cb9de44042b8cdb1
Fixed
f5880f4d02f1957697570e0b3cf4a813054bbe1b
Introduced
b57f3aa5f00a127f209eff74b78787dd3fd5ed4d
Fixed
22c16c8445f2b029602ee63b5202c9d82c7ab30d
Introduced
f6a29831c76d2dbe82e9ae673539f910654c58a4
Fixed
f33f6d309843cdebd60449206958e879f413d311
Introduced
e3aafee3f2bc07e09bf79389f20ea3db731466c3
Fixed
2e549d964d7d2f19cb1ef2e3b5b47444b39b11dd
Introduced
fe47e6139dbfc0f0c9ce0d79da77926b5fceaa77
Fixed
e4911395ef64e4cbec8d2ba114fab35153a3ba7b
Introduced
14247ee4302378d292863865c643abe99bbfe3c7
Fixed
8e2b69f9358ce6bb302b8bc3a946faefabe2f0e2
Introduced
06fa4161aa74619239cf27017d124081c825684a
Fixed
5926c50520b061982d20d91cb4fa42cca828b623
Introduced
29ffbff370968ae48a1b7a34e35c8b8e75cf0f91
Fixed
2d05d25bdc7fa8924c135629cefb3099b9e953bf
Introduced
491c67be12ca8a9fe37ae38307ba7e298c976ec3
Fixed
401404d7e0b62d33c02b07ec687b47bdce1f6b4e
Introduced
c33464a4554cff8a082bc353d9226d8104b80d2b
Fixed
75943626d3cf5165563b7cb9462af4475b9a001c
Introduced
6fe64752be3260f2a47f38e68c2cb77400e5a0c9
Fixed
59d2ead33b331122fb9c90c584b92fbd82c0b828
Introduced
50dc0ca5bb332c895f0f39fe4e6ee1e4a43e06dc
Fixed
ca1dbac5794da97d69a608db4a737f9e10672a8d
Introduced
9ff4499281663b0c772787fd4a60538288f842e9
Fixed
365ed456cfcc225e7928f9bba443fe7b0da5a543
Introduced
537fd931bc02e6e934a2d774422b897871aa87ad
Fixed
fec4d1020d870da730c587346554998202ac41fa
Introduced
965fcddcf68cf4fd122ae24b992e242dfea1d773
Fixed
863c3dfd9353f8859d26409d570d425dc94b3115
Introduced
058f9903676a7efaee534a682df0a2a8b87574d8
Fixed
02b981c95e1d071df1512c9f4352a68ed9fd867f
Introduced
50caeb6e61ad0c49d2c7e1d6d5115047a011f590
Fixed
8f1610822d90430432ecb5ca76ca667c06d26a7d
Introduced
73157386d069425c5e6ea7c4fc0122e8a9b58a7b
Fixed
dc4ed36203ed6ad455303cef3b5d41f54d04994e
Introduced
cc101b64012b16d087780657a2b828ccd7794a63
Fixed
c1beb8d2b85c79027a1b6057ab17916944b6144c
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "3.7.40"
        },
        {
            "introduced": "3.8"
        },
        {
            "fixed": "3.8.40"
        },
        {
            "introduced": "3.9"
        },
        {
            "fixed": "3.9.39"
        },
        {
            "introduced": "4.0"
        },
        {
            "fixed": "4.0.37"
        },
        {
            "introduced": "4.1"
        },
        {
            "fixed": "4.1.37"
        },
        {
            "introduced": "4.2"
        },
        {
            "fixed": "4.2.34"
        },
        {
            "introduced": "4.3"
        },
        {
            "fixed": "4.3.30"
        },
        {
            "introduced": "4.4"
        },
        {
            "fixed": "4.4.29"
        },
        {
            "introduced": "4.5"
        },
        {
            "fixed": "4.5.28"
        },
        {
            "introduced": "4.6"
        },
        {
            "fixed": "4.6.25"
        },
        {
            "introduced": "4.7"
        },
        {
            "fixed": "4.7.25"
        },
        {
            "introduced": "4.8"
        },
        {
            "fixed": "4.8.21"
        },
        {
            "introduced": "4.9"
        },
        {
            "fixed": "4.9.22"
        },
        {
            "introduced": "5.0"
        },
        {
            "fixed": "5.0.18"
        },
        {
            "introduced": "5.1"
        },
        {
            "fixed": "5.1.15"
        },
        {
            "introduced": "5.2"
        },
        {
            "fixed": "5.2.17"
        },
        {
            "introduced": "5.3"
        },
        {
            "fixed": "5.3.14"
        },
        {
            "introduced": "5.4"
        },
        {
            "fixed": "5.4.12"
        },
        {
            "introduced": "5.5"
        },
        {
            "fixed": "5.5.11"
        },
        {
            "introduced": "5.6"
        },
        {
            "fixed": "5.6.10"
        },
        {
            "introduced": "5.7"
        },
        {
            "fixed": "5.7.8"
        },
        {
            "introduced": "5.8"
        },
        {
            "fixed": "5.8.6"
        },
        {
            "introduced": "5.9"
        },
        {
            "fixed": "5.9.5"
        },
        {
            "introduced": "6.0"
        },
        {
            "fixed": "6.0.3"
        }
    ]
}

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-43497.json"