VYPR
Medium severity4.8NVD Advisory· Published Sep 9, 2022· Updated Jun 17, 2026No known patch

CVE-2022-37404

CVE-2022-37404

Description

Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Christian Salazar's add2fav plugin <= 1.0 at WordPress.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <=1.0
  • Christian Salazar/add2fav (WordPress plugin)v5
    Range: <= 1.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.