CVE-2022-0626

The Advanced Admin Search WordPress plugin before 1.1.6 does not sanitize and escape some parameters before outputting them back in an admin page, leading to a Reflected Cross-Site Scripting...

CVE-2022-0626

CVE-2022-0626 affects the WordPress plugin Advanced Admin Search prior to version 1.1.6. The issue is a Reflected Cross-Site Scripting caused by parameters not being sanitized/escaped before being output on an admin page (e.g., keyword, user, metaKey, metaValue). A fix is available in version 1.1...

WordPress plugin Advanced Admin Search 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress Advanced Admin Search plugin, which stems fr...

PT-2022-13310 · WordPress · Advanced Admin Search

Name of the Vulnerable Software and Affected Versions: Advanced Admin Search WordPress plugin versions prior to 1.1.6 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because some parameters are not properly sanitized and escaped before being outputted back...

WordPress Advanced Admin Search plugin <= 1.1.5 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by Ran Crane in WordPress Advanced Admin Search plugin versions = 1.1.5. Solution Update the WordPress Advanced Admin Search plugin to the latest available version at least 1.1.6...