RSS   Vulnerabilities for 'Domain replace'   RSS

2022-05-23
 
CVE-2022-1218

CWE-79
 

 
The Domain Replace WordPress plugin through 1.3.8 does not sanitise and escape a parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting

 

 >>> Vendor: Duogeek 3 Products
Duofaq-responsive-flat-simple-faq
Simple image gallery
Domain replace


Copyright 2024, cxsecurity.com

 

Back to Top