Vulnerability CVE-2022-1322


Published: 2022-08-22

Description:
The Coming Soon - Under Construction WordPress plugin through 1.1.9 does not sanitize and escape some of its settings, which could allow high-privileged users to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://wpscan.com/vulnerability/e1724471-26bd-4cb3-a279-51783102ed0c

Copyright 2026, cxsecurity.com

 

Back to Top