KEV Entry
CVE-2022-28290
Known Exploited Vulnerability Entry External Catalog
Entry Details
Confirmed Exploited2022-04-25 16:31 UTC
Timestamps
2022-04-25
2022-04-25
Scope
KEVIntel entry: Reflective Cross-Site Scripting vulnerability in WordPress Country Selector Plugin Version 1.6.5. The XSS payload executes whenever the user tries... | Affected: n/a / WordPress Country Selector Plugin | Used in malware: unknown | Not yet in CISA KEV: True
References
- {'id': 'CVE-2022-28290', 'url': 'https://www.cve.org/CVERecord?id=CVE-2022-28290'}
- {'id': 'kevintel', 'url': 'https://kevintel.com/vuln/CVE-2022-28290'}
a90e3ac0-2c96-43a8-9e45-4aa24424d3bc
caeb2787-0d58-4236-9039-7c86c3e566f3
2026-06-23 14:06 UTC
2026-06-23 14:06 UTC
Evidence
1| Type | Source | Signal | Confidence | Details | GCVE Metadata |
|---|---|---|---|---|---|
| public_report | kevintel | successful_exploitation | 0.70 |
View details
|
- |