2 matches found
CVE-2022-44576
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in AgentEasy Properties plugin = 1.0.4 on WordPress...
CVE-2022-44576
The CVE-2022-44576 entry concerns the WordPress AgentEasy Properties plugin, affected versions up to 1.0.4. The root cause is a stored cross-site scripting (XSS) vulnerability due to insufficient sanitization/escaping of settings, exploitable by users with admin+ privileges (authentication requir...