2 matches found
CVE-2022-4551
CVE-2022-4551 affects the Rich Table of Contents WordPress plugin up to version 1.3.8. The issue is that certain shortcode attributes are not validated/escaped before output, allowing stored XSS for users with the contributor role or higher in pages/posts that embed the shortcode. Impact describe...
WordPress Rich Table of Contents Plugin <= 1.3.8 is vulnerable to Cross Site Scripting (XSS)
Software Rich Table of Contents Type Plugin Vulnerable versions = 1.3.8 Fixed in 1.3.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2022-4551 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 2ac49cba0f41 Credits Lana Codes...