5 matches found
CVE-2022-3578
The ProfileGrid WordPress plugin before 5.1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-3578
The ProfileGrid WordPress plugin before 5.1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-3578
The ProfileGrid WordPress plugin before 5.1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-3578 ProfileGrid < 5.1.1 - Reflected Cross-Site Scripting
The ProfileGrid WordPress plugin before 5.1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-3578
The CVE-2022-3578 entry concerns the WordPress ProfileGrid plugin (versions before 5.1.1). The vulnerability is a Reflected Cross-Site Scripting caused by insufficient sanitisation/escaping of a parameter before it is echoed on pages. Impact as documented includes ability for an attacker to injec...