The vulnerability of the WP Accessibility Helper (WAH) plugin in the WordPress content management system allows attackers to perform cross-site scripting attacks.

The vulnerability of the WP Accessibility Helper WAH plugin in the WordPress content management system is related to the lack of measures taken to protect the website structure when processing the wahi parameter. Exploiting this vulnerability allows a remote attacker to perform cross-site scripti...

CVE-2022-0150

The WP Accessibility Helper WAH WordPress plugin before 0.6.0.7 does not sanitise and escape the wahi parameter before outputting back its base64 decode value in the page, leading to a Reflected Cross-Site Scripting issue...