2 matches found
CVE-2022-4524
A vulnerability, which was classified as problematic, was found in Roots soil Plugin up to 4.0.x. Affected is the function languageattributes of the file src/Modules/CleanUpModule.php. The manipulation of the argument language leads to cross site scripting. It is possible to launch the attack...
CVE-2022-4524
The CVE-2022-4524 entry describes a cross-site scripting vulnerability in Roots soil Plugin up to 4.0.x, affecting language_attributes() in src/Modules/CleanUpModule.php due to improper neutralization of the language parameter. A remote attacker could exploit it; upgrading to 4.1.0 fixes this, wi...