2 matches found
CVE-2020-29303
SabaiApps Directories Pro plugin for WordPress (version 1.3.45) contains an XSS vulnerability in the POST path /wp-admin/admin.php?page=drts/directories, caused by unsanitized _drts_form_build_id and an accompanying _t token. The issue enables arbitrary script/HTML injection and is fixed in versi...
WordPress DirectoriesPro 1.3.45 Cross Site Scripting
Title: Reflected XSS Product: WordPress DirectoriesPro Plugin by SabaiApps Vendor Homepage: https://directoriespro.com/ Vulnerable Version: 1.3.45 Fixed Version: 1.3.46 CVE Number: CVE-2020-29303 Author: Jack Misiura from The Missing Link Website: https://www.themissinglink.com.au Timeline:...