CVE-2022-2597

Posted on by admin

CVE-2022-2597

The Visual Portfolio, Photo Gallery & Post Grid WordPress plugin before 2.19.0 does not have proper authorisation checks in some of its REST endpoints, allowing users with a role as low as contributor to call them and inject arbitrary CSS in arbitrary saved layouts

Source: CVE-2022-2597

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다