Lucene search
Profile Builder Security Vulnerabilities - February 2022
cve
The Profile Builder – User Profile & User Registration Forms WordPress plugin is vulnerable to Cross-Site Scripting due to insufficient escaping and sanitization of the site_url parameter found in the ~/assets/misc/fallback-page.php file which allows attackers to inject arbitrary web scripts onto a...
6.1CVSS
5.8AI Score
0.002EPSS
2022-02-24 07:15 PM
39