3 matches found
CVE-2022-4267
The Bulk Delete Users by Email WordPress plugin through 1.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-4267 Bulk Delete Users by Email <= 1.2 - Reflected Cross-Site Scripting
The Bulk Delete Users by Email WordPress plugin through 1.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...
CVE-2022-4267
CVE-2022-4267 concerns the WordPress plugin Bulk Delete Users by Email (versions up to 1.2 as stated in the primary description). The vulnerability is a reflected cross-site scripting (XSS) caused by lack of proper sanitisation/escaping of a parameter that is output back into the page. Several co...