Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-1894

Disclosure Date: July 11, 2022 (last updated October 07, 2023)
The Popup Builder WordPress plugin before 4.1.11 does not escape and sanitize some settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when the unfiltred_html is disallowed
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0