The Flexi Quote Rotator WordPress... CVE-2022-2328

- AV AC AU C I A
发布: 2022-08-01
修订: 2024-11-21

The Flexi Quote Rotator WordPress plugin through 0.9.4 does not sanitise and escape its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.

0%
暂无可用Exp或PoC
当前有1条受影响产品信息