Medium severity4.8NVD Advisory· Published Aug 23, 2022· Updated Jun 17, 2026
CVE-2022-36282
CVE-2022-36282
Description
Authenticated (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Roman Pronskiy's Search Exclude plugin <= 1.2.6 at WordPress.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.2.6
- Roman Pronskiy/Search Exclude (WordPress plugin)v5Range: <= 1.2.6
Patches
Vulnerability mechanics
References
2- patchstack.com/database/vulnerability/search-exclude/wordpress-search-exclude-plugin-1-2-6-authenticated-stored-cross-site-scripting-xss-vulnerabilitynvdPatchThird Party Advisory
- wordpress.org/plugins/search-exclude/nvdProductRelease Notes
News mentions
0No linked articles in our index yet.