XSS Vulnerabilities
-
Long time user of Events Manager. Always has worked well, but just got an error with a recent security scan.
Here are the details from the scan.
Wordpress plugin Events Manager vewrion 5.9.5 and prior suffers from multiple XSS vulnerabilities. There is multiple stored XSS(Cross-site Scripting) in file events-manager/trunk/admin/settings/tabs/pages.php events-manager-options page. The reason – Unsanitized user’s input from the following parameters: ….Can provide full scan info if interested, but didn’t want to expose the specific parameters in the forum.
Please advise.
Viewing 3 replies - 1 through 3 (of 3 total)
Viewing 3 replies - 1 through 3 (of 3 total)
- The topic ‘XSS Vulnerabilities’ is closed to new replies.