RSS   Vulnerabilities for 'Xml sitemap generator'   RSS

2022-05-23
 
CVE-2022-0346

CWE-79
 

 
The XML Sitemap Generator for Google WordPress plugin before 2.0.4 does not validate a parameter which can be set to an arbitrary value, thus causing XSS via error message or RCE if allow_url_include is turned on.

 


Copyright 2024, cxsecurity.com

 

Back to Top