Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-0898

Disclosure Date: May 09, 2022 (last updated October 07, 2023)
The IgniteUp WordPress plugin through 3.4.1 does not sanitise and escape some fields when high privilege users don't have the unfiltered_html capability, which could lead to Stored Cross-Site Scripting issues
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0