Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Strategy11 Team | Business Directory | unaffected |
|
No data.
No data.
No data available yet.
Vendor Solution
Update the WordPress Business Directory Plugin to the latest available version (at least 6.4.23).
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 29 Jun 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Mon, 29 Jun 2026 15:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Subscriber Cross Site Scripting (XSS) in Business Directory <= 6.4.22 versions. | |
| Title | WordPress Business Directory plugin <= 6.4.22 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-29T15:51:34.682Z
Reserved: 2026-06-24T12:45:08.530Z
Link: CVE-2026-57328
Vulnrichment
Updated: 2026-06-29T15:51:27.858Z
NVD
No data.
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-29T16:30:17Z