cleantalk
Vulnerabilities and Security Researches

Interactive Medical Drawing of Human Body, CVE-2022-0388

CVE, Research URL

CVE-2022-0388

Home page URL

Security reports for Interactive Medical Drawing of Human Body

Application

Interactive Medical Drawing of Human Body

Published on
Mar 28, 2022
Research Description
The Interactive Medical Drawing of Human Body WordPress plugin before 2.6 does not sanitise and escape the Link field, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
Affected versions
max 2.6.
Status
vulnerable
Previous vulnerability researches
Interactive Medical Drawing of Human Body (CVE-2025-9332) , Oct 11, 2025
Interactive Medical Drawing of Human Body (CVE-2023-53593) , Jun 13, 2026
Interactive Medical Drawing of Human Body (CVE-2022-0388) , Jun 10, 2024
New vulnerability
WPEventPartners Demo Import (CVE-2023-33999) , Jun 13, 2026
User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin (CVE-2025-14976) , Jun 13, 2026
Advance Menu Manager (CVE-2023-33999) , Jun 13, 2026
Free Woocommerce Product Table View – Woo Table Pro (CVE-2025-31758) , Jun 13, 2026
Newsletters (CVE-2025-67911) , Jun 13, 2026