3 matches found
CVE-2022-0626
The Advanced Admin Search WordPress plugin before 1.1.6 does not sanitize and escape some parameters before outputting them back in an admin page, leading to a Reflected Cross-Site Scripting...
CVE-2022-0626 Advanced Admin Search < 1.1.6 - Reflected Cross-Site Scripting
The Advanced Admin Search WordPress plugin before 1.1.6 does not sanitize and escape some parameters before outputting them back in an admin page, leading to a Reflected Cross-Site Scripting...
CVE-2022-0626
CVE-2022-0626 affects the WordPress plugin Advanced Admin Search prior to version 1.1.6. The issue is a Reflected Cross-Site Scripting caused by parameters not being sanitized/escaped before being output on an admin page (e.g., keyword, user, metaKey, metaValue). A fix is available in version 1.1...