CVE-2022-1889

CVE-2022-1889

The Newsletter WordPress plugin before 7.4.6 does not escape and sanitise the preheader_text setting, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when the unfilteredhtml is disallowed

Source: CVE-2022-1889

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다