Unrated severityNVD Advisory· Published Oct 31, 2022· Updated May 8, 2025
Newspaper < 12 - Reflected Cross-Site Scripting
CVE-2022-2627
Description
The Newspaper WordPress theme before 12 does not sanitise a parameter before outputting it back in an HTML attribute via an AJAX action, leading to a Reflected Cross-Site Scripting.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Newspaperdescription
- Range: <12
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.