2 matches found
CVE-2023-0477
CVE-2023-0477 affects the WordPress plugin Auto Featured Image (Auto Post Thumbnail)
CVE-2021-24932
The CVE-2021-24932 entry concerns the WordPress plugin Auto Featured Image (Auto Post Thumbnail) prior to version 3.9.3. The vulnerability is a Reflected Cross-Site Scripting (XSS) flaw caused by insufficient sanitisation/escaping of the post_id parameter in an admin page output within a JS block...