RSS   Vulnerabilities for 'Pricing table builder'   RSS

2022-03-21
 
CVE-2022-0640

CWE-79
 

 
The Pricing Table Builder WordPress plugin before 1.1.5 does not sanitize and escape the postid parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.

 

 >>> Vendor: Wpdevart 10 Products
Gallery
Booking calendar
Responsive image gallery gallery album
Poll\, survey\, questionnaire and voting system
Youtube embed\, playlist and popup
Countdown and countup\, woocommerce sales timer
Coming soon and maintenance mode
Duplicate page or post
Pricing table builder
Social comments


Copyright 2024, cxsecurity.com

 

Back to Top