Stored XSS vulnerability
-
Hey all, WP Engine sent out this plugin vulnerability advisory on the plugin. Is this being looked into ?
WP Engine summary of the vulnerability: Data from an attacker could be interpreted as code by site visitors’ web browsers. The ability to run code in another site visitors’ browser can be abused to steal information, or modify site configuration.
Original 3rd-party’s report on the vulnerability: Please note that questions related to this article should be directed to the 3rd-party researcher and not WP Engine:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4466
https://wpscan.com/vulnerability/497d0bf9-b750-4293-9662-1722a74442e2
Viewing 3 replies - 1 through 3 (of 3 total)
Viewing 3 replies - 1 through 3 (of 3 total)
- The topic ‘Stored XSS vulnerability’ is closed to new replies.
