3 matches found
CVE-2022-1597
The CVE-2022-1597 entry concerns the WordPress WPQA Builder plugin (pre-5.4), used with the Discy/Himer themes. Affected component is the reset-password form parameter, which is not properly sanitized/escaped, enabling Reflected Cross-Site Scripting. The vulnerability allows an attacker to execut...
CVE-2022-1597 WPQA < 5.4 - Reflected Cross-Site Scripting
The WPQA Builder WordPress plugin before 5.4, used as a companion for the Discy and Himer , does not sanitise and escape a parameter on its reset password form which makes it possible to perform Reflected Cross-Site Scripting attacks...
Exploit for Cross-site Scripting in 2Code Wpqa_Builder
CVE-2022-1597 The plugin, used as a companion for the Discy a...