CVE-2022-0189

Posted on by admin

CVE-2022-0189

The WP RSS Aggregator WordPress plugin before 4.20 does not sanitise and escape the id parameter in the wprss_fetch_items_row_action AJAX action before outputting it back in the response, leading to a Reflected Cross-Site Scripting

Source: CVE-2022-0189

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다