3 matches found
CVE-2022-4394
creationtimestamp| type| source ---|---|--- 2023-01-10 02:27:58+00:00| seen| https://t.me/cibsecurity/56189...
CVE-2022-4394 iPages Flipbook For WordPress <= 1.4.6 - Contributor+ Stored XSS
The iPages Flipbook For WordPress plugin through 1.4.6 does not sanitise and escape some of its settings, which could allow users such as contributor+ to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...
CVE-2022-4394
The CVE-2022-4394 vulnerability affects the iPages Flipbook For WordPress plugin (versions up to 1.4.6, prior to 1.4.7 per some sources) where settings are not properly sanitized/escaped. This enables Stored Cross-Site Scripting by low-privilege users (e.g., Contributor+) even when unfiltered_htm...