The Duplicate Page and Post... CVE-2022-2152

- AV AC AU C I A
发布: 2022-08-15
修订: 2024-11-21

The Duplicate Page and Post WordPress plugin before 2.8 does not sanitise and escape its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息