3 matches found
CVE-2022-2093
The WP Duplicate Page WordPress plugin before 1.3 does not sanitize and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2022-2093 WP Duplicate Page < 1.3 - Admin+ Stored Cross Site Scripting
The WP Duplicate Page WordPress plugin before 1.3 does not sanitize and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2022-2093
CVE-2022-2093 affects the WordPress WP Duplicate Page plugin prior to version 1.3. The issue is a failure to sanitize/escape certain settings, which can allow high-privilege users (e.g., admins) to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed. Documented in multipl...