2 matches found
CVE-2019-17515
The CleanTalk cleantalk-spam-protect plugin before 5.127.4 for WordPress is affected by: Cross Site Scripting XSS. The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the from or till parameter. The component is: inc/cleantalk-users.php and...
CVE-2019-17515
CVE-2019-17515 involves the WordPress plugin CleanTalk Spam Protect (AntiSpam/Firewall) prior to version 5.127.4. The vulnerability is a reflected Cross-Site Scripting (XSS) in the plugin’s code paths inc/cleantalk-users.php and inc/cleantalk-comments.php. The attack vector states that when an ad...