Medium severity5.4NVD Advisory· Published Aug 16, 2023· Updated Jun 17, 2026
CVE-2022-4782
CVE-2022-4782
Description
The ClickFunnels WordPress plugin through 3.1.1 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/ClickFunnels WordPress plugindescription
- Range: <=3.1.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/d3a0468a-8405-4b6c-800f-abd5ce5387b5nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.