Vulnerability CVE-2022-1707

Vulnerability CVE-2022-1707

Published: 2022-06-13

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Gtm4wp -> Google tag manager

https://github.com/duracelltomi/gtm4wp/issues/224

https://www.wordfence.com/vulnerability-advisories/#CVE-2022-1707

https://github.com/duracelltomi/gtm4wp/blob/1.15/public/frontend.php#L298

https://github.com/duracelltomi/gtm4wp/blob/1.15/public/frontend.php#L782