Better Font Awesome Project

better_font_awesome_project

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Better Font Awesome

better_font_awesome

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-4512 1Better Font Awesome Project 1Better Font Awesome Jun 17, 2026 Feb 13, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 The Better Font Awesome WordPress plugin before 2.0.4 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with th...Show more The Better Font Awesome WordPress plugin before 2.0.4 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.Show less
CVE-2022-37405 1Better Font Awesome Project 1Better Font Awesome Jun 17, 2026 Sep 9, 2022 N/A· v4 8.8 HIGH· v3 N/A· v2 Cross-Site Request Forgery (CSRF) vulnerability in Mickey Kay's Better Font Awesome plugin <= 2.0.1 at WordPress.

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-4512

1Better Font Awesome Project

1Better Font Awesome

Jun 17, 2026

Feb 13, 2023

N/A· v4

5.4 MEDIUM· v3

N/A· v2

The Better Font Awesome WordPress plugin before 2.0.4 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with th...Show more

CVE-2022-37405

1Better Font Awesome Project

1Better Font Awesome

Jun 17, 2026

Sep 9, 2022

N/A· v4

8.8 HIGH· v3

N/A· v2

Cross-Site Request Forgery (CSRF) vulnerability in Mickey Kay's Better Font Awesome plugin <= 2.0.1 at WordPress.