{"uuid": "9cacec49-3480-4c44-a195-ccd251c576e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2015-5622", "type": "seen", "source": "https://t.me/arpsyndicate/1754", "content": "#ExploitObserverAlert\n\nCVE-2015-5622\n\nDESCRIPTION: Exploit Observer has 54 entries related to CVE-2015-5622. Cross-site scripting (XSS) vulnerability in WordPress before 4.2.3 allows remote authenticated users to inject arbitrary web script or HTML by leveraging the Author or Contributor role to place a crafted shortcode inside an HTML element, related to wp-includes/kses.php and wp-includes/shortcodes.php.\n\nFIRST-EPSS: 0.004230000\nNVD-IS: 2.9\nNVD-ES: 6.8", "creation_timestamp": "2023-12-11T14:26:17.000000Z"}