2 matches found
CVE-2022-0428
The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting...
CVE-2022-0428
CVE-2022-0428 affects the WordPress Content Egg plugin prior to 5.3.0. The root cause is failure to sanitize/escape the page parameter before output in an Autoblogging admin dashboard attribute, enabling a Reflected Cross-Site Scripting (XSS) vulnerability. Several advisories corroborate the issu...