4 matches found
CVE-2022-2173
The Advanced Database Cleaner WordPress plugin before 3.1.1 does not escape numerous generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting...
WordPress Advanced Database Cleaner Plugin < 3.1.1 XSS Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sigmaplugin:advanceddatabasecleaner"; ifdescription...
CVE-2022-2173 Advanced Database Cleaner < 3.1.1 - Reflected Cross-Site Scripting
The Advanced Database Cleaner WordPress plugin before 3.1.1 does not escape numerous generated URLs before outputting them back in href attributes of admin dashboard pages, leading to Reflected Cross-Site Scripting...
CVE-2022-2173
CVE-2022-2173 concerns the WordPress plugin Advanced Database Cleaner prior to version 3.1.1 . The vulnerability arises because the plugin does not escape numerous generated URLs before outputting them into href attributes on admin dashboard pages, enabling a Reflected Cross‑Site Scripting (XSS) ...