Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-2398

Disclosure Date: August 08, 2022 (last updated October 08, 2023)
The WordPress Comments Fields WordPress plugin before 4.1 does not escape Field Error Message, which could allow high-privileged users to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0