CVE-2024-0187

Common Vulnerabilities and Exposures

Last Post by worldlovely 11 months ago

1 Posts

1 Users

0 Reactions

347 Views

RSS

worldlovely

(@worldlovely)

Posts: 97

Trusted Member

Topic starter

Description

The Community by PeepSo WordPress plugin before 6.3.1.2 does not sanitise and escape various parameters and generated URLs before outputting them back attributes, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

References

MISC: https://wpscan.com/vulnerability/b4600411-bee1-4cc8-aee9-0a613ac9b55b/
URL: https://wpscan.com/vulnerability/b4600411-bee1-4cc8-aee9-0a613ac9b55b/

Posted : 22/10/2024 11:55 pm

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed