Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-0206

Disclosure Date: February 14, 2022 (last updated February 23, 2025)
The NewStatPress WordPress plugin before 1.3.6 does not properly escape the whatX parameters before outputting them back in attributes, leading to Reflected Cross-Site Scripting issues
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0