CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2025-22622: Age Verification - Reflected cross-site scripting (XSS)

4.3 CVSS

Description

Age Verification for your checkout page. Verify your customer's identity 1.20.0 was found to be vulnerable. The web application dynamically generates web content without validating the source of the potentially untrusted data in myapp/class-wc-integration-agechecker-integration.php.

Classification

CVE ID: CVE-2025-22622

CVSS Base Severity: MEDIUM

CVSS Base Score: 4.3

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Affected Products

Vendor: Age Checker

Product: Age Verification

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.03% (probability of being exploited)

EPSS Percentile: 6.44% (scored less or equal to compared to others)

EPSS Date: 2025-03-20 (when was this score calculated)

References

https://fluidattacks.com/advisories/skims-5/
https://wordpress.org/plugins/agecheckernet/#developers

Timeline

2025-02-20 00:31:07 UTC
CVE

Age Verification - Reflected cross-site scripting (XSS)