2 matches found
CVE-2022-2114
The CVE-2022-2114 entry concerns the WordPress plugin Data Tables Generator by Supsystic. The vulnerability arises because the plugin before version 1.10.20 does not sanitise and escape certain Table settings, enabling stored XSS for high-privilege users (e.g., admin) when unfiltered_html is disa...
CVE-2022-2114 Data Tables Generator by Supsystic < 1.10.20 - Admin+ Stored Cross-Site Scripting
The Data Tables Generator by Supsystic WordPress plugin before 1.10.20 does not sanitise and escape some of its Table settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in...