MEDIUM
Profiles
CVE published 2026-05-10
CVE-2022-50945
CVE-2022-50945 is a stored cross-site scripting issue in the WordPress 3dady real-time web stats plugin 1.0. According to the supplied record, an authenticated attacker can place malicious JavaScript into unsanitized option-panel fields, and the payload executes when the affected page is later viewed. The NVD metadata classifies the weakness as CWE-79 and lists a CVSS v4.0 base score of 5.1 (MEDIUM).